Manual Reference Pages - nfs_selinux (8)

NAME

nfs_selinux - Security Enhanced Linux Policy for NFS

Author

DESCRIPTION

Security-Enhanced Linux secures the nfs server via flexible mandatory access control.

BOOLEANS

SELinux policy is customizable based on least access required. So by default SElinux policy does not allow nfs to share files. If you want to setup this machine to share nfs partitions read only, you must set the boolean nfs_export_all_ro boolean.

setsebool -P nfs_export_all_ro 1
If you want to share files read/write you must set the nfs_export_all_rw boolean.
setsebool -P nfs_export_all_rw 1

If you want to use a remote NFS server for the home directories on this machine, you must set the use_nfs_home_dir boolean.
setsebool -P use_nfs_home_dirs 1
system-config-securitylevel is a GUI tool available to customize SELinux policy settings.

AUTHOR

This manual page was written by Dan Walsh <dwalsh@redhat.com>.

SEE ALSpppO

selinux(8), chcon(1), setsebool(8)
Jump to page or go to Top of page | Section 8 | Main Index.

dwalsh@redhat.com

nfs_selinux (8)

17 Jan 2005

Generated by Linux Help Man Pages from /usr/share/man/man8/nfs_selinux.8.gz using man macros.

setsebool -P nfs_export_all_ro 1 If you want to share files read/write you must set the nfs_export_all_rw boolean. setsebool -P nfs_export_all_rw 1

If you want to use a remote NFS server for the home directories on this machine, you must set the use_nfs_home_dir boolean. setsebool -P use_nfs_home_dirs 1 system-config-securitylevel is a GUI tool available to customize SELinux policy settings.

Manual Reference Pages - nfs_selinux (8)

NAME

CONTENTS

DESCRIPTION

BOOLEANS

AUTHOR

SEE ALSpppO