Show Table of Contents
25.2. Types
The main permission control method used in SELinux targeted policy to provide advanced process isolation is Type Enforcement. All files and processes are labeled with a type: types define a SELinux domain for processes and a SELinux type for files. SELinux policy rules define how types access each other, whether it be a domain accessing a type, or a domain accessing another domain. Access is only allowed if a specific SELinux policy rule exists that allows it.
The following types are used with DHCP:
dhcp_etc_t- This type is mainly used for files in the
/etcdirectory, including configuration files. dhcpd_var_run_t- This type is used for the PID file for
dhcpd, in the/var/run/directory. dhcpd_exec_t- This type is used for transition of DHCP executable files to the
dhcpd_tdomain. dhcpd_initrc_exec_t- This type is used for transition of DHCP executable files to the
dhcpd_initrc_tdomain.
Note
To see the full list of files and their types for
dhcpd, enter the following command:
~]$ grep dhcp /etc/selinux/targeted/contexts/files/file_contexts
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.