Show Table of Contents
2.6.2. Compile SELinux policies
You can compile your own Tomcat 6/7 SELinux policies as a root user.
Prerequisites
Before compiling SELinux policies ensure the following prerequisites:
selinux-policy-develpackage is installed.- Tomcat 6 or 7 is installed using RPM installation method.
Following is an example of a SELinux policy compilation from RPM distributed sources including the expected results.
Tomcat 7:
# cd /etc/tomcat7/selinux/packages/tomcat7 # make -f /usr/share/selinux/devel/Makefile Compiling targeted tomcat7 module /usr/bin/checkmodule: loading policy configuration from tmp/tomcat7.tmp /usr/bin/checkmodule: policy configuration loaded /usr/bin/checkmodule: writing binary representation (version 10) to tmp/tomcat7.mod Creating targeted tomcat7.pp policy package rm tmp/tomcat7.mod tmp/tomcat7.mod.fc # semodule -i tomcat7.pp
Tomcat 6:
# cd /etc/tomcat6/selinux/packages/tomcat6 # make -f /usr/share/selinux/devel/Makefile Compiling targeted tomcat6 module /usr/bin/checkmodule: loading policy configuration from tmp/tomcat6.tmp /usr/bin/checkmodule: policy configuration loaded /usr/bin/checkmodule: writing binary representation (version 10) to tmp/tomcat6.mod Creating targeted tomcat6.pp policy package rm tmp/tomcat6.mod.fc tmp/tomcat6.mod # semodule -i tomcat6.pp
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.