SELinux Installation & Configuration | Engineering Notes

Install SELinux packages and configure SELinux to enforce security policies on a Linux system.

bash

sudo yum install selinux-policy selinux-policy-targeted policycoreutils

bash

sestatus

Example output:

plain text

SELinux status: enabled
Current mode: enforcing
Policy from config file: targeted

Edit the configuration file:

bash

sudo nano /etc/selinux/config

Example configuration:

plain text

SELINUX=enforcing
SELINUXTYPE=targeted

Restart the system:

bash

sudo reboot

bash

getenforce

Example output:

plain text

Enforcing

Targeted policy protects only specific services.

SELinux adds an extra security layer beyond standard Linux permissions.

Avoid disabling SELinux in production environments.

bash

sudo yum install selinux-policy selinux-policy-targeted policycoreutils