SELinux Package Descriptions
SELinux contains several packages, each of which contain specific utilities that you can use to administer SELinux on Oracle Linux systems. Some packages are installed by default, while other packages are optional.
The following table describes the SELinux packages that are installed by default with Oracle Linux.
| Package | Description |
|---|---|
|
|
Provides utilities such as |
|
|
Provides the API that SELinux applications use to get and set process and file security contexts, and to obtain security policy decisions. |
|
|
Contains Python bindings for developing SELinux applications. |
|
|
Provides the SELinux Reference Policy, which is used as the basis for other policies, such as the SELinux targeted policy. |
|
|
Provides the SELinux targeted policy, where objects outside the targeted domains run under DAC. |
|
|
Provides the |
The following table describes useful SELinux packages that aren't installed by default.
Install any required packages using the dnf command.
| Package | Description |
|---|---|
|
|
Translates SELinux levels, such as |
|
|
Provides Python utilities for operating SELinux, such as
|
|
|
Provides the sandbox utility for creating SELinux sandboxes to run commands in a tightly confined SELinux domain. |
|
|
Provides a strict Multi-Level Security (MLS) policy as an alternative to the SELinux targeted policy. |
selinux-policy-doc
|
Provides manual pages for many SELinux policy elements. |
|
|
Lets you view |
|
|
Translates access-denial messages from SELinux into detailed descriptions that you
can view on the command line using the |
|
|
Provides the Tresys Technology SETools distribution of tools and libraries, which you can use to analyze and query policies, monitor and report audit logs, and manage file context. |
For more information, see the SELinux Project Wiki and the
selinux(8) and other SELinux command manual pages.