Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /usr/share/doc/selinux-policy-2.4.6/html/ drwxr-xr-x |
Viewing file: kernel_selinux.html (15.07 KB) -rw-r--r-- Select action/file-type: (+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) | Security Enhanced Linux Reference Policy
+
admin
-
corecommands
+
services
- corenetwork - devices - domain - files - filesystem - kernel - mcs - mls - selinux - storage - terminal * Global Booleans * Global Tunables * Layer Index * Interface Index * Template Index Layer: kernelModule: selinuxDescription:Policy for kernel security interface, in particular, selinuxfs. This module is required to be included in all policies. Interfaces:
selinux_compute_access_vector(
domain
)
SummaryAllows caller to compute an access vector. Parameters
selinux_compute_create_context(
domain
)
SummaryCalculate the default type for object creation. Parameters
selinux_compute_member(
domain
)
SummaryAllows caller to compute polyinstatntiated directory members. Parameters
selinux_compute_relabel_context(
domain
)
SummaryCalculate the context for relabeling objects. Description
Calculate the context for relabeling objects. This is determined by using the type_change rules in the policy, and is generally used for determining the context for relabeling a terminal when a user logs in.
Parameters
selinux_compute_user_contexts(
domain
)
SummaryAllows caller to compute possible contexts for a user. Parameters
selinux_dontaudit_getattr_dir(
domain
)
SummaryDo not audit attempts to get the attributes of the selinuxfs directory. Parameters
selinux_dontaudit_getattr_fs(
domain
)
SummaryDo not audit attempts to get the attributes of the selinuxfs filesystem Parameters
selinux_dontaudit_read_fs(
domain
)
SummaryDo not audit attempts to read generic selinuxfs entries Parameters
selinux_dontaudit_search_fs(
domain
)
SummaryDo not audit attempts to search selinuxfs. Parameters
selinux_dontaudit_validate_context(
domain
)
Summarydontaudit caller to validate security contexts. Parameters
selinux_genbool(
domain
)
SummaryGenerate a file context for a boolean type Parameters
selinux_get_boolean(
domain
)
SummaryAllow caller to read the state of Booleans Description
Allow caller read the state of Booleans
Parameters
selinux_get_enforce_mode(
domain
)
SummaryAllows the caller to get the mode of policy enforcement (enforcing or permissive mode). Parameters
selinux_get_fs_mount(
domain
)
SummaryGets the caller the mountpoint of the selinuxfs filesystem. Parameters
selinux_getattr_fs(
domain
)
SummaryGet the attributes of the selinuxfs filesystem Parameters
selinux_load_policy(
domain
)
SummaryAllow caller to load the policy into the kernel. Parameters
selinux_search_fs(
domain
)
SummarySearch selinuxfs. Parameters
selinux_set_boolean(
domain
)
SummaryAllow caller to set the state of Booleans to enable or disable conditional portions of the policy. Description
Allow caller to set the state of Booleans to enable or disable conditional portions of the policy.
Since this is a security event, this action is always audited.
Parameters
selinux_set_enforce_mode(
domain
)
SummaryAllow caller to set the mode of policy enforcement (enforcing or permissive mode). Description
Allow caller to set the mode of policy enforcement (enforcing or permissive mode).
Since this is a security event, this action is always audited.
Parameters
selinux_set_parameters(
domain
)
SummaryAllow caller to set SELinux access vector cache parameters. Description
Allow caller to set SELinux access vector cache parameters. The allows the domain to set performance related parameters of the AVC, such as cache threshold.
Since this is a security event, this action is always audited.
Parameters
selinux_unconfined(
domain
)
SummaryUnconfined access to the SELinux kernel security server. Parameters
selinux_validate_context(
domain
)
SummaryAllows caller to validate security contexts. Parameters
|
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0149 ]-- |