sepolicy-communicate(8)sepolicy-communicate(8)NAME
sepolicy-communicate - Generate a report showing if two SELinux Policy Domains can communicate
SYNOPSIS
sepolicy communicate [-h] -s SOURCE -t TARGET [-c TCLASS] [-S SOURCEACCESS] [-T TARGETACCESS]
DESCRIPTION
Use sepolicy communicate to examine SELinux Policy to if a source SELinux Domain can communicate with a target SELinux Domain. The default
command looks to see if there are any file types that the source domain can write, which the target domain can read.
OPTIONS -c, --class
Specify the SELinux class which the source domain will attempt to communicate with the target domain. (Default file)
-h, --help
Display help message
-s, --source
Specify the source SELinux domain type.
-S, --sourceaccess
Specify the list of accesses used by the source SELinux domain type to communicate with the target domain. Default Open, Write.
-t, --target
Specify the target SELinux domain type.
-T, --targetaccess
Specify the list of accesses used by the target SELinux domain type to receive communications from the source domain. Default Open,
Read.
AUTHOR
This man page was written by Daniel Walsh <dwalsh@redhat.com>
SEE ALSO sepolicy(8), selinux(8)
20121005 sepolicy-communicate(8)
Check Out this Related Man Page
sepolicy-network(8)sepolicy-network(8)NAME
sepolicy-network - Examine the SELinux Policy and generate a network report
SYNOPSIS
sepolicy network [-h] (-l | -a application [application ...] | -p PORT [PORT ...] | -t TYPE [TYPE ...] | -d DOMAIN [DOMAIN ...])
DESCRIPTION
Use sepolicy network to examine SELinux Policy and generate network reports.
OPTIONS -a, --application
Generate a report listing the ports to which the specified init application is allowed to connect and or bind.
-d, --domain
Generate a report listing the ports to which the specified domain is allowed to connect and or bind.
-l, --list
List all Network Port Types defined in SELinux Policy
-h, --help
Display help message
-t, --type
Generate a report listing the port numbers associate with the specified SELinux port type.
-p, --port
Generate a report listing the SELinux port types associate with the specified port number.
EXAMPLES
sepolicy network -p 22
22: tcp ssh_port_t 22
22: udp reserved_port_t 1-511
22: tcp reserved_port_t 1-511
sepolicy network -a /usr/sbin/sshd
sshd_t: tcp name_connect
111 (portmap_port_t)
53 (dns_port_t)
88, 750, 4444 (kerberos_port_t)
9080 (ocsp_port_t)
9180, 9701, 9443-9447 (pki_ca_port_t)
32768-61000 (ephemeral_port_t)
all ports < 1024 (reserved_port_type)
all ports with out defined types (port_t)
sshd_t: tcp name_bind
22 (ssh_port_t)
5900-5983, 5985-5999 (vnc_port_t)
6000-6020 (xserver_port_t)
32768-61000 (ephemeral_port_t)
all ports > 500 and < 1024 (rpc_port_type)
all ports with out defined types (port_t)
sshd_t: udp name_bind
32768-61000 (ephemeral_port_t)
all ports > 500 and < 1024 (rpc_port_type)
all ports with out defined types (port_t)
AUTHOR
This man page was written by Daniel Walsh <dwalsh@redhat.com>
SEE ALSO sepolicy(8), selinux(8), semanage(8)
20121005 sepolicy-network(8)
hi in vi, i have a file and i wanted to replace all wnix to unix. is the below correct.
c/wnix/unix g...
i have tried , and the above is not right...
help? (7 Replies)
I used to have a Cobalt RaQ4 server that allows the server administrator to set up site administrators for each domain. The site administrators can add more users to that domain, and he can also write files to the users' directories.
I now have a RedHat 9.0 box running Linux 2.4.20 with Apache... (3 Replies)
How can i configure domain in sun E10k server. Domain configuration is done in ok prompt or OS's command line. I read the manuals for configuring Domain from docs.sun.com. Still i have confusion in the domain configuration.
Anyone have any documents for domain configuration means plz send me..... (2 Replies)
Hi
My source database is seibel and the target is oracle. I need to check the count for source query and target query. if it is equal then i need to send and success mail to an email id. If it is not equal need to send an failure mail to an email id.
pl let me know about the script in ksh.
... (2 Replies)
Hi all,
I want to write a shell script that read line by line of a file that have all domain names written, after reading complete file it will give us following output.
Domain Name Expiry Days-Left
abcd.com 20-Feb-200 6 10
How can i acheive that script... (6 Replies)
Hi,
I have two servers1&2, one is not in the network. Cant communicate from it to other servers. The second one can communicate to above mentioned server. I am trying a script which synchronizes files between server 1 an 2?
server1: cant communicate to any other servers
server2: can... (4 Replies)
Hi,
Has anyone enabled SELinux on Amazon EC2?
I tried to enable SELinux using a CentOS image, and the steps in the following post, but it didn't work!!
Amazon Web Services Developer Community : Has anyone successfully enabled SELinux ...
The steps i took:
1)I started with CentOS 5.3 base... (5 Replies)
Hi,
I've got to write "something" about how to build a dynamic domain on an M5000. simple question: anyone done anything like that? not really finding much by googling either.
please share...:o (3 Replies)
I'm using rsync to transfer data from one system (nfs01) to another (nfs02) but I'm seeing 28GB more data on the target than what's on the source. The source and target filesystems are both 138 GB. The source shows 100GB used and after running rsync the target shows 128 GB used. Shouldn't they be... (5 Replies)
Requirement: Need to split a source file say a1.txt which can be of size upto 150 MB into 25 target files each with a max size of 25 MB along with the header line in each target file.
NOTE: Few target files can be empty also ,but 25 files must be generated for 1 source file( I can expect upto... (4 Replies)
Looking for open source software to join my RHEL6.x to AD domain for .
- Domain login
- Group based restriction
Already tested
- Pbis open -> But rejected as some library conflicts
- Realmd -> Not supportive for RHEL 6.x
Please suggest any open source tools (2 Replies)