list changes made to policy from default
Daniel J Walsh
dwalsh at redhat.com
Mon Nov 26 15:05:05 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 11/26/2012 08:29 AM, Erik Boyer wrote:
> Hello!
>
>
>
> Is there any way to list changes or additions to the policy from the
> default?
>
> I have a server that I plan on migrating and I don’t have all of the
> changes I made to SELinux’s policy documented. It would be nice if there
> was a tool that would list what options have changes since the default and
> their current values.
>
>
>
> Thanks in advance!
>
>
>
You can changes/extract/install semanage changes
http://danwalsh.livejournal.com/41794.html
As far as modules that you installed, if you did not keep track you could use
rpm to tell you
sudo rpm -qf /etc/selinux/targeted/modules/active/modules/*pp | grep -v
selinux-policy-targeted
>
>
> Thank you,
>
> *Erik Boyer *Production / IT System Support
>
> *KUKA Toledo Production Operations, LLC
>
> * Tel. +1 419 727-5549, Fax +1 419 729-7085, Cell 419-438-5350
> erik.boyer at ktpo.com <mailto:erik.boyer at ktpo.com>_ _www.ktpo.com
> <http://www.ktpo.com/>/
>
> Consider the environment. If you print this email, please recycle.
>
> /This e-mail may contain confidential and/or privileged information. If you
> are not the intended recipient (or have received this e-mail in error)
> please notify the sender immediately and destroy this e-mail. Any
> unauthorized copying, disclosure or distribution of contents of this e-mail
> is strictly forbidden.
>
>
>
>
>
> -- selinux mailing list selinux at lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/selinux
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with undefined - http://www.enigmail.net/
iEYEARECAAYFAlCzhSEACgkQrlYvE4MpobNeqgCfct9Y/VAgZwejeD5gdrY1apUz
2y0An1Wa/j2dNjsQ2fsgTaEWLyzJwWIG
=6LUF
-----END PGP SIGNATURE-----
More information about the selinux
mailing list