7.2.1.3. SELinux Enforcement Rules
> semanage module -l
Module Name Priority Language
abrt 100 pp
accountsd 100 pp
acct 100 pp
afs 100 pp
aiccu 100 pp
aide 100 pp
ajaxterm 100 pp
alsa 100 pp
amanda 100 pp
...
> sesearch -A -t sshd_key_t -p write
allow ssh_keygen_t sshd_key_t:file { append create getattr ioctl link lock open read rename setattr unlink write };
allow sshd_keygen_t sshd_key_t:file { append create getattr ioctl link lock open read rename setattr unlink write };
...
allow files_unconfined_type file_type:file { append audit_access create execute execute_no_trans getattr ioctl link lock map mounton open quotaon read relabelfrom relabelto rename setattr swapon unlink write };
...
allow ftpd_t non_security_file_type:file { append create getattr ioctl link lock open read rename setattr unlink write }; [ ftpd_full_access ]:True
allow kernel_t non_security_file_type:file { append create getattr ioctl link lock open read rename setattr unlink write }; [ nfs_export_all_rw ]:True
...
allow sysadm_t non_security_file_type:file { append create getattr ioctl link lock open read relabelfrom relabelto rename setattr unlink write };
...