On 03/13/2018 07:53 AM, Samuel Sieb wrote: > On 03/12/2018 06:28 PM, ToddAndMargo wrote: >> I mean before I started adding things to SELinux based on >> SEAlerts and such. In other word, set SELinux back to >> the way I found it after I installed Linux > > I thought I had seen something to list changed modules, but now I think > I misunderstood. I think the easiest way would be to find a clean > install somewhere and list the installed modules there. Then you can do > a diff with your system and remove the modules are extra. > _______________________________________________ > users mailing list -- email@example.com > To unsubscribe send an email to users-le...@lists.fedoraproject.org
Hi, To "reset" SELinux on your system please remove all "non-system" modules: # semodule -lfull | grep -v 100 # this gives you list of non system SELinux modules # semodule -r <modulename> # this will remove it Then there is semanage command: # cat reset_selinux.txt boolean -D login -D interface -D user -D port -D node -D fcontext -D module -D # semanage import -f reset_selinux.txt # # restorecon -Rv / This will remove all local SELinux modules and reset your local modifications. Lukas. -- Lukas Vrabec Software Engineer, Security Technologies Red Hat, Inc.
Description: OpenPGP digital signature
_______________________________________________ users mailing list -- firstname.lastname@example.org To unsubscribe send an email to users-le...@lists.fedoraproject.org