RepoMirrors/selinux
1
0
Fork 0
mirror of https://github.com/SELinuxProject/selinux synced 2024-12-26 16:02:26 +00:00
Code Issues Packages Projects Releases Wiki Activity
15d5b8d0fa
selinux/libselinux/man/man8/booleans.8
Guillem Jover 6ef13eeda7 libselinux: man: Fix man pages formatting 
- Add man page sections '(N)' to external references, and '()' on
  functions described in the same man page.
- Escape minus signs when those are expected to be used on the command
  line or files.
- Mark files and variables in italic; Note headings, function names,
  constants, program options and man page references in bold.
- Do not justify and hyphenate SEE ALSO section, and avoid hyphenation
  on symbol names by prepending them with \%.
- Remove trailing dot from NAME section description.
- Split sections with a no-op command '.', to visually distinguish them
  but to avoid introducing spurious vertical space in the formatted
  output.
- Add explicit .sp commands in the SYNOPSIS section between function
  prototypes, and fix space placement in function protoypes.
- Split header includes with .br (instead of the explicit or implicit
  .sp) so that they are vertically contiguous.
- Add missing {} around SELINUXTYPE and POLICYTYPE variable text in
  paths.
- Remove unneeded formatting commands.
- Remove spurious blank lines.

Signed-off-by: Guillem Jover <guillem@debian.org>
Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Dan Walsh <dwalsh@redhat.com>
2013-02-05 20:14:43 -05:00

59 lines
1.8 KiB
Groff
Raw Blame History

.TH "booleans" "8" "11 Aug 2004" "dwalsh@redhat.com" "SELinux Command Line documentation"
.SH "NAME"
booleans \- Policy booleans enable runtime customization of SELinux policy
.
.SH "DESCRIPTION"
This manual page describes SELinux policy booleans.
.BR
The SELinux policy can include conditional rules that are enabled or
disabled based on the current values of a set of policy booleans.
These policy booleans allow runtime modification of the security
policy without having to load a new policy.
For example, the boolean httpd_enable_cgi allows the httpd daemon to
run cgi scripts if it is enabled. If the administrator does not want
to allow execution of cgi scripts, he can simply disable this boolean
value.
The policy defines a default value for each boolean, typically false.
These default values can be overridden via local settings created via the
.BR setsebool (8)
utility, using
.B \-P
to make the setting persistent across reboots. The
.B system\-config\-securitylevel
tool provides a graphical interface for altering
the settings. The
.BR load_policy (8)
program will preserve
current boolean settings upon a policy reload by default, or can
optionally reset booleans to the boot-time defaults via the
.B \-b
option.
Boolean values can be listed by using the
.BR getsebool (8)
utility and passing it the
.B \-a
option.
Boolean values can also be changed at runtime via the
.BR setsebool (8)
utility or the
.BR togglesebool (8)
utility. By default, these utilities only change the
current boolean value and do not affect the persistent settings,
unless the
.B \-P
option is used to setsebool.
.
.SH AUTHOR
This manual page was written by Dan Walsh <dwalsh@redhat.com>.
The SELinux conditional policy support was developed by Tresys Technology.
.
.SH "SEE ALSO"
.BR getsebool (8),
.BR setsebool (8),
.BR selinux (8),
.BR togglesebool (8)
Reference in New Issue View Git Blame Copy Permalink