Skip to content

serverbee/ansible-role-selinux-custom-module

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
defaults
defaults
 
 
meta
meta
 
 
tasks
tasks
 
 
vars
vars
 
 
README.md
README.md
 
 

Repository files navigation

SELinux custom module role

This role installs custom SELinux modules and set SELinux to Enforcing mode.

Variables

General
  • selinux_config_dir: [default: /etc/selinux]: Directory where will be store all SELinux module files from this role
SELinux custom modules settings
  • selinux_custom_modules: [default: {}]: SELinux modules declarations
  • selinux_custom_modules.key: [required]: The identifier of the module (e.g. first-custom-module:)
  • selinux_custom_modules.key.value: [required]: Declarate the source code of custom SELinux modules

Dependencies

None

Example

---
- host: localhost
  roles:
    - serverbee.selinux_custom_module
  vars:
    selinux_custom_modules:
      first-custom-module: |
        module first-custom-module 1.0;
        require {
                type myapp_t;
                type myapp_port_t;
                class tcp_socket name_bind;
        }
        allow myapp_t myapp_port_t:tcp_socket name_bind;

License

GPLv3 license

Author Information

Bohdan Saienko

About

Ansible role to install custom SELinux modules

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •