Home / server / Questions / 191619
Accepted
Marcin
Asked: 2010-10-17 04:28:05 +0800 CST

Selinux - centos - missing /etc/selinux/config

  • 772

I am trying to check if my selinux is disabled/enabled and can't find its config file, why its like that and what should I do to disable it.

selinux centos5

5 Answers

  1. Best Answer

    sestatus will tell you if SELinux is enabled, as well as a few other characteristics.

    • 4

  2. To change the SELinux to disable you can use the below command:

    setenforce 0

    While this does not replace the config file it will put SELinux into permissive mode until the next reboot, meaning that SELinux is running and logging but not actually controlling permissions.

    You can as well try the command:

    /usr/bin/system-config-securitylevel-tui

    To totally disable it.

    • 2

  3. The following command:

    yum provides /etc/selinux/config

    will tell you which package does the file belong to and whether the package has been installed. Normally it would be some selinux-policy package.

    If it wasn't installed you can install it with yum install.

    If it is reported as installed but is absent in the filesystem then something is very wrong with the system.

    • 1

  4. Open the file using following cmd 

    vi /etc/sysconfig/selinux

    and go to the insert mode by pressing i

    # This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
#     disabled - SELinux security policy is enforced.
#     permissive - SELinux prints warnings instead of enforcing.
#     disabled - No SELinux policy is loaded.
SELINUX=enforcing
# SELINUXTYPE= can take one of these two values:
#     targeted - Targeted processes are protected,
#     mls - Multi Level Security protection.
SELINUXTYPE=targeted

    change enforcing into disabled and save and quit.

    • 1

  5. The selinux configuration file path under CentOS is /etc/sysconfig/selinux.

    • 0