Blocking change to permissive
Bruno Wolff III
bruno at wolff.to
Wed Feb 22 17:46:39 UTC 2012
On Wed, Feb 22, 2012 at 18:41:22 +0100,
Dominick Grift <dominick.grift at gmail.com> wrote:
> On Wed, 2012-02-22 at 11:34 -0600, Bruno Wolff III wrote:
> > I remember that once apon a time there was a boolean (or at least a setting
> > in system-config-selinux) that would block root from using setenforce to
> > change from enforcing to permissive mode.
> >
> > I can't seem to find it now on F17. I haven't figured out the correct
> > combo to find this via google.
>
> It is secure_mode_policyload
Thanks!
More information about the selinux
mailing list