SELinux uses booleans to makes its policy more flexible. Typically a basic policy is pretty strict,
but it can be made more permissive with booleans. For example, the SELinux policy that ships with
ftpd prevents reading from nfs. That behavior can be changed with the
List all of the booleans on your system with
getsebool as follows:
Set a boolean value with
setsebool -P allow_ftpd_use_nfs=1
-P flag is used, the boolean change will be permanent.
getsebool shows SELinux boolean values.
setsebool sets the current state of a particular SELinux
boolean or a list of booleans to a given value.
Portions of this page's content are copied from this page for non-commercial, education purposes.