URL:
Reporter RHNID:
Section: -
Language: en-US (English)
Workaround:

Description: The SELinux section covers nothing that isn't already covered in RHCSA/RHCE level except maybe dontaudit rules. Additional things we could cover:

• fcontext equivalency rules (i.e., semanage -a -e /sourcedir /targetdir)) and how sometimes they're the cause of problems and other times they're a much better solution than adding a traditional `fcontext -a -t` rule.
• Using sesearch to inspect what a particular domain is actually allowed to do (for example).
• Piping ausearch output to audit2why and audit2allow.