Sodamhan.com

TL;DR

setsebool

Set SELinux boolean value. See also: semanage-boolean, getsebool. More information: https://manned.org/setsebool.

  • Show the current setting of all booleans:

getsebool -a

  • Set or unset a boolean temporarily (non-persistent across reboot):

sudo setsebool httpd_can_network_connect 1|true|on|0|false|off

  • Set or unset a boolean persistently:

sudo setsebool -P container_use_devices 1|true|on|0|false|off

  • Set or unset multiple booleans persistently at once:

sudo setsebool -P ftpd_use_fusefs=1 mount_anyfile=0 ...

  • Set or unset a boolean persistently (alternative method using semanage-boolean):

sudo semanage boolean -m|--modify -1|--on|-0|--off haproxy_connect_any

This document was created using the contents of the tldr project.