1semanage-permissive(8) semanage-permissive(8)
2
6 semanage-permissive - SELinux Policy Management permissive mapping tool
7
9 semanage permissive [-h] [-n] [-N] [-S STORE] (--add TYPE | --delete
10 TYPE | --deleteall | --extract | --list)
11
14 semanage is used to configure certain elements of SELinux policy with‐
15 out requiring modification to or recompilation from policy sources.
16 semanage permissive adds or removes a SELinux Policy permissive module.
17 Please note that this command can make any domain permissive, but can
18 only remove the permissive property from domains where it was added by
19 semanage permissive ("semanage permissive -d" can only be used on types
20 listed as "Customized Permissive Types" by "semanage permissive -l").
21
24 -h, --help
25 Show this help message and exit
26 -a, --add
28 Add a record of the specified object type
29 -d, --delete
31 Delete a record of the specified object type
32 -D, --deleteall
34 Remove all local customizations of permissive domains
35 -l, --list
37 List records of the specified object type
38 -E, --extract
40 Extract customizable commands, for use within a transaction
41 -n, --noheading
43 Do not print heading when listing the specified object type
44 -N, --noreload
46 Do not reload the policy after commit
47 -S STORE, --store STORE
49 Select an alternate SELinux Policy Store to manage
50
53 List all permissive domains ("Builtin Permissive Types" where set by the system policy, or a custom policy module)
54 # semanage permissive -l
55 Make httpd_t (Web Server) a permissive domain
56 # semanage permissive -a httpd_t
57
60 selinux(8), semanage(8)
61
64 This man page was written by Daniel Walsh <dwalsh@redhat.com>
65 20130617 semanage-permissive(8)