Jump to content

Workgroup:SELinux

From NixOS Wiki

Revision as of 03:52, 25 February 2019 by imported>Etbe

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

This group is about adding SE Linux support to NixOS both booting and when run on a system like Debian or Fedora with SE Linux support.

People

etbe

Config

 boot.kernelParams = [ "security=selinux" ];

not yet tested the kernel config

 boot.kernelPatches = [ {
       name = "selinux-config";
       patch = null;
       extraConfig = 
               SECURITY_SELINUX y
               SECURITY_SELINUX_DEVELOP y
               SECURITY_SELINUX_AVC_STATS y
               SECURITY_SELINUX_CHECKREQPROT_VALUE 0
             ;
       } ];

Retrieved from "https://wiki.nixos.org/w/index.php?title=Workgroup:SELinux&oldid=6625"