Search here...

Getting Started with SELinux on CentOS Stream 9

Editorial Staff
By Editorial Staff

Pre-requisites:

A system with CentOS Stream 9 installed and running
Access to a terminal or command line
Root or sudo privileges

SELinux is a Mandatory Access Control (MAC) system, developed by the NSA.

When SELinux is enabled, it can run in either enforcing or permissive modes.

When SELinux is installed on your system, it can be either enabled or disabled. By default, your hosting provider might have SELinux in an enabled state on your Linux machine.

If you want to disable SELinux, update your SELinux configuration file using the text editor of your choice. Set the SELinux directive to disabled.

vim /etc/selinux/config

Verify which SELinux packages are installed on your system:

rpm -aq | grep selinux

SELinux can take one of these three values: enforcing, permissive, or disabled.

Reboot your server for the changes to take effect:

reboot

Verify your SELinux installation's status:

sestatus

You can check which mode your system is running by issuing the following command:

getenforce

Use the following command to view SELinux policy modules currently loaded into memory

semodule -l

To get the list of ports of SELinux

semanage port -l

If you encounter the following error:

-bash: semanage: command not found

You can use dnf provides to search the repository for packages that provide a particular file

You need to use the following command to find out the package that provides the queried file /usr/sbin/semanage

dnf provides /usr/sbin/semanage

From the output, you can see that we need to install policycoreutils-python-utils package to use the semanage command

The policycoreutils-python-utils package contains the management tools used to manage an SELinux environment. Install the package if not already installed.

dnf install policycoreutils-python-utils

Some optional, but useful packages to install for advanced SELinux management:

- setools: provides command line tools to analyze and compare SELinux policies
- setools-console: a graphical interface for the "setools" package

By default, SELinux log messages are written to /var/log/audit/audit.log

For more information:

http://selinuxproject.org/page/User_Resources

http://opensource.com/business/13/11/selinux-policy-guide

http://wiki.centos.org/HowTos(2f)SELinux.html

Previous article
Boost Your Apache Skills: Must-Know Commands for Every SysAdmin
Next article
Essential firewalld Commands Every Linux Admin Should Know

Popular (all time)

Related articles

How to Edit Your WordPress Admin Username and Author Slug via MySQL

Editorial Staff -
In this guide, we’ll walk you through the process of editing both the admin username and author slug using MySQL. Whether you’re looking to strengthen your site's security or simply personalize your author URL, this straightforward method will help you make the changes with ease.

Getting Started with React

Editorial Staff -
In this guide, we will cover the basics of setting up a local development environment, starting a simple React project, and the basics of how it works.

How to Simplify Your Terminal with Custom Bash Aliases

Editorial Staff -
By creating custom shortcuts for your most-used commands, you can save time, reduce errors, and make your terminal experience faster and more enjoyable. In this guide, we’ll show you how to create and manage your own Bash aliases to simplify your terminal workflow and boost your productivity.

Follow us

Huntcode.com exists to help you learn at your own pace (our content is here 24/7, on-demand, whenever you need it), and we cover everything from web development basics to advanced topics like Cyber Security and server management.

Explore

Latest news

Running SQL Queries in VS Code: Connect to MySQL Like a Pro

Backend 0
Whether you're debugging your application or managing data, having SQL access right in VS Code streamlines your workflow, saving you time and effort. In this guide, we'll walk you through the steps to connect your MySQL database to VS Code and run SQL queries seamlessly. By the end, you'll be equipped to work with your MySQL databases like a pro, all within your development environment!

Git Made Easy: Essential Commands Every Developer Should Know

Backend 0
Whether you're working on solo projects or collaborating with a team, knowing the right Git commands is essential for managing your code efficiently. In this guide, we'll break down the most important Git commands every developer should know to streamline their workflow, troubleshoot issues, and collaborate seamlessly. By the end, you'll be equipped with the core skills to use Git confidently and effectively.

Mastering Linux File Permissions: A Comprehensive Guide

SysAdmin 0
In this comprehensive guide, we'll explore everything you need to know about Linux file permissions—from basic concepts to advanced management techniques. You'll learn how to control who can access, modify, or execute files and directories, and how to implement best practices for secure system administration. Whether you're a beginner or looking to enhance your skills, this guide will give you the knowledge to master Linux file permissions and ensure your system runs safely and efficiently.
Cam G Media, LLC is excited to announce its membership in the NVIDIA Inception Program.

© 2025 NVIDIA, the NVIDIA logo, are trademarks and/or registered trademarks of NVIDIA Corporation in the U.S. and other countries.

We want to help anyone curious about coding unlock new opportunities through learning.

Copyright © 2025 Cam G Media, LLC. All rights reserved.