Policy : Linux: Read /etc/selinux/config (KB)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.150156

Kategorie: Policy

Titel: Linux: Read /etc/selinux/config (KB)

Zusammenfassung: The /etc/selinux/config configuration file controls whether;SELinux is enabled or disabled, and if enabled, whether SELinux operates in permissive mode or;enforcing mode. The SELINUX variable may be set to any one of disabled, permissive, or enforcing to;select one of these options. The disabled option completely disables the SELinux kernel and;application code, leaving the system running without any SELinux protection. The permissive option;enables the SELinux code, but causes it to operate in a mode where accesses that would be denied by;policy are permitted but audited. The enforcing option enables the SELinux code and causes it to;enforce access denials as well as auditing them. Permissive mode may yield a different set of;denials than enforcing mode, both because enforcing mode will prevent an operation from proceeding;past the first denial and because some application code will fall back to a less privileged mode of;operation if denied access.;;Note: This script only stores information for other Policy Controls.

Beschreibung: Summary:
The /etc/selinux/config configuration file controls whether
SELinux is enabled or disabled, and if enabled, whether SELinux operates in permissive mode or
enforcing mode. The SELINUX variable may be set to any one of disabled, permissive, or enforcing to
select one of these options. The disabled option completely disables the SELinux kernel and
application code, leaving the system running without any SELinux protection. The permissive option
enables the SELinux code, but causes it to operate in a mode where accesses that would be denied by
policy are permitted but audited. The enforcing option enables the SELinux code and causes it to
enforce access denials as well as auditing them. Permissive mode may yield a different set of
denials than enforcing mode, both because enforcing mode will prevent an operation from proceeding
past the first denial and because some application code will fall back to a less privileged mode of
operation if denied access.

Note: This script only stores information for other Policy Controls.

CVSS Score:
0.0

CVSS Vector:
AV:L/AC:H/Au:S/C:N/I:N/A:N

Copyright Copyright (C) 2020 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.150156
Kategorie:	Policy
Titel:	Linux: Read /etc/selinux/config (KB)
Zusammenfassung:	The /etc/selinux/config configuration file controls whether;SELinux is enabled or disabled, and if enabled, whether SELinux operates in permissive mode or;enforcing mode. The SELINUX variable may be set to any one of disabled, permissive, or enforcing to;select one of these options. The disabled option completely disables the SELinux kernel and;application code, leaving the system running without any SELinux protection. The permissive option;enables the SELinux code, but causes it to operate in a mode where accesses that would be denied by;policy are permitted but audited. The enforcing option enables the SELinux code and causes it to;enforce access denials as well as auditing them. Permissive mode may yield a different set of;denials than enforcing mode, both because enforcing mode will prevent an operation from proceeding;past the first denial and because some application code will fall back to a less privileged mode of;operation if denied access.;;Note: This script only stores information for other Policy Controls.
Beschreibung:	Summary: The /etc/selinux/config configuration file controls whether SELinux is enabled or disabled, and if enabled, whether SELinux operates in permissive mode or enforcing mode. The SELINUX variable may be set to any one of disabled, permissive, or enforcing to select one of these options. The disabled option completely disables the SELinux kernel and application code, leaving the system running without any SELinux protection. The permissive option enables the SELinux code, but causes it to operate in a mode where accesses that would be denied by policy are permitted but audited. The enforcing option enables the SELinux code and causes it to enforce access denials as well as auditing them. Permissive mode may yield a different set of denials than enforcing mode, both because enforcing mode will prevent an operation from proceeding past the first denial and because some application code will fall back to a less privileged mode of operation if denied access. Note: This script only stores information for other Policy Controls. CVSS Score: 0.0 CVSS Vector: AV:L/AC:H/Au:S/C:N/I:N/A:N
Copyright	Copyright (C) 2020 Greenbone AG