virtual_image_context(5) SELinux configuration virtual_image_context(5)NAME
virtual_image_context - The SELinux virtual machine image context configuration file.
DESCRIPTION
The virtual_image_context file contains a list of image contexts for use by the SELinux-aware virtulization API libvirt (see libvirtd(8)).
selinux_virtual_image_context_path(3) will return the active policy path to this file. The default virtual image context file is:
/etc/selinux/{SELINUXTYPE}/contexts/virtual_image_context
Where {SELINUXTYPE} is the entry from the selinux configuration file config (see selinux_config(5)).
FILE FORMAT
Each line in the file consists of an entry as follows:
user:role:type[:range]
Where:
user role type range
A user, role, type and optional range (for MCS/MLS) separated by colons (:) that can be used as a virtual image context.
EXAMPLE
# ./contexts/virtual_image_context
system_u:object_r:svirt_image_t:s0
system_u:object_r:svirt_content_t:s0
SEE ALSO selinux(8), libvirtd(8), selinux_virtual_image_context_path(3), selinux_config(5)Security Enhanced Linux 28-Nov-2011 virtual_image_context(5)
Check Out this Related Man Page
virtual_domain_context(5) SELinux configuration virtual_domain_context(5)NAME
virtual_domain_context - The SELinux virtual machine domain context configuration file.
DESCRIPTION
The virtual_domain_context file contains a list of domain contexts that are available for use by the SELinux-aware virtulization API lib-
virt (see libvirtd(8)).
selinux_virtual_domain_context_path(3) will return the active policy path to this file. The default virtual domain context file is:
/etc/selinux/{SELINUXTYPE}/contexts/virtual_domain_context
Where {SELINUXTYPE} is the entry from the selinux configuration file config (see selinux_config(5)).
FILE FORMAT
Each line in the file consists of an entry as follows:
user:role:type[:range]
Where:
user role type range
A user, role, type and optional range (for MCS/MLS) separated by colons (:) that can be used as a virtual domain context.
EXAMPLE
# ./contexts/virtual_domain_context
system_u:object_r:svirt_t:s0
SEE ALSO selinux(8), libvirtd(8), selinux_virtual_domain_context_path(3), selinux_config(5)Security Enhanced Linux 28-Nov-2011 virtual_domain_context(5)
Hi,
Has anyone enabled SELinux on Amazon EC2?
I tried to enable SELinux using a CentOS image, and the steps in the following post, but it didn't work!!
Amazon Web Services Developer Community : Has anyone successfully enabled SELinux ...
The steps i took:
1)I started with CentOS 5.3 base... (5 Replies)
Initial SELinux context for user hitendra
$ id -Z
unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
I changed the role
# semanage login -a -s user_u hitendra
#
Then I logged in again
# su - hitendra
$ id -Z
unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
$
But I don't... (1 Reply)
Hi,
Since a year my libvirtd does not work anymore on my Gentoodesktop. In the meantime a used virtualbox. But I would like to have back libvirt. The problem was after libvirt should not only work with root privileges. I deinstalled all things with libvirt an kvm. I removed all things from /var... (4 Replies)