Policy : Linux: Read /etc/selinux/config (KB)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.150156

Categoría: Policy

Título: Linux: Read /etc/selinux/config (KB)

Resumen: The /etc/selinux/config configuration file controls whether;SELinux is enabled or disabled, and if enabled, whether SELinux operates in permissive mode or;enforcing mode. The SELINUX variable may be set to any one of disabled, permissive, or enforcing to;select one of these options. The disabled option completely disables the SELinux kernel and;application code, leaving the system running without any SELinux protection. The permissive option;enables the SELinux code, but causes it to operate in a mode where accesses that would be denied by;policy are permitted but audited. The enforcing option enables the SELinux code and causes it to;enforce access denials as well as auditing them. Permissive mode may yield a different set of;denials than enforcing mode, both because enforcing mode will prevent an operation from proceeding;past the first denial and because some application code will fall back to a less privileged mode of;operation if denied access.;;Note: This script only stores information for other Policy Controls.

Descripción: Summary:
The /etc/selinux/config configuration file controls whether
SELinux is enabled or disabled, and if enabled, whether SELinux operates in permissive mode or
enforcing mode. The SELINUX variable may be set to any one of disabled, permissive, or enforcing to
select one of these options. The disabled option completely disables the SELinux kernel and
application code, leaving the system running without any SELinux protection. The permissive option
enables the SELinux code, but causes it to operate in a mode where accesses that would be denied by
policy are permitted but audited. The enforcing option enables the SELinux code and causes it to
enforce access denials as well as auditing them. Permissive mode may yield a different set of
denials than enforcing mode, both because enforcing mode will prevent an operation from proceeding
past the first denial and because some application code will fall back to a less privileged mode of
operation if denied access.

Note: This script only stores information for other Policy Controls.

CVSS Score:
0.0

CVSS Vector:
AV:L/AC:H/Au:S/C:N/I:N/A:N

Copyright Copyright (C) 2020 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.150156
Categoría:	Policy
Título:	Linux: Read /etc/selinux/config (KB)
Resumen:	The /etc/selinux/config configuration file controls whether;SELinux is enabled or disabled, and if enabled, whether SELinux operates in permissive mode or;enforcing mode. The SELINUX variable may be set to any one of disabled, permissive, or enforcing to;select one of these options. The disabled option completely disables the SELinux kernel and;application code, leaving the system running without any SELinux protection. The permissive option;enables the SELinux code, but causes it to operate in a mode where accesses that would be denied by;policy are permitted but audited. The enforcing option enables the SELinux code and causes it to;enforce access denials as well as auditing them. Permissive mode may yield a different set of;denials than enforcing mode, both because enforcing mode will prevent an operation from proceeding;past the first denial and because some application code will fall back to a less privileged mode of;operation if denied access.;;Note: This script only stores information for other Policy Controls.
Descripción:	Summary: The /etc/selinux/config configuration file controls whether SELinux is enabled or disabled, and if enabled, whether SELinux operates in permissive mode or enforcing mode. The SELINUX variable may be set to any one of disabled, permissive, or enforcing to select one of these options. The disabled option completely disables the SELinux kernel and application code, leaving the system running without any SELinux protection. The permissive option enables the SELinux code, but causes it to operate in a mode where accesses that would be denied by policy are permitted but audited. The enforcing option enables the SELinux code and causes it to enforce access denials as well as auditing them. Permissive mode may yield a different set of denials than enforcing mode, both because enforcing mode will prevent an operation from proceeding past the first denial and because some application code will fall back to a less privileged mode of operation if denied access. Note: This script only stores information for other Policy Controls. CVSS Score: 0.0 CVSS Vector: AV:L/AC:H/Au:S/C:N/I:N/A:N
Copyright	Copyright (C) 2020 Greenbone AG