lilith/tldr
1
0
Fork 0
mirror of https://github.com/tldr-pages/tldr.git synced 2025-07-24 18:15:25 +02:00
Code Activity

audit2allow: add page (#13612)

Browse source 
* audit2allow: add page

* audit2allow: fix man page link

* audit2allow: add a caution note and separate the install example

---------

Co-authored-by: Wiktor Perskawiec <git@spageektti.cc>
This commit is contained in:
Stanley Chinedu Ogada 2024-09-08 13:57:12 +01:00 committed by GitHub
parent 65f3904441
commit 2fafd6afb3
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 21 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

21
pages/linux/audit2allow.md Normal file
View file

@ -0,0 +1,21 @@
# audit2allow
> Create an SELinux local policy module to allow rules based on denied operations found in logs.
> Note: Use audit2allow with caution—always review the generated policy before applying it, as it may allow excessive access.
> More information: <https://manned.org/audit2allow>.
- Generate a local policy to allow access for all denied services:
`sudo audit2allow --all -M {{local_policy_name}}`
- Generate a local policy module to grant access to a specific process/service/command from the audit logs:
`sudo grep {{apache2}} /var/log/audit/audit.log | sudo audit2allow -M {{local_policy_name}}`
- Inspect and review the Type Enforcement (.te) file for a local policy:
`vim {{local_policy_name}}.te`
- Install a local policy module:
`sudo semodule -i {{local_policy_name}}.pp`