• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer navigation

The Geek Diary

  • OS
    • Linux
    • CentOS/RHEL
    • Solaris
    • Oracle Linux
    • VCS
  • Interview Questions
  • Database
    • oracle
    • oracle 12c
    • ASM
    • mysql
    • MariaDB
  • DevOps
    • Docker
    • Shell Scripting
  • Big Data
    • Hadoop
    • Cloudera
    • Hortonworks HDP

sestatus Command Examples in Linux

by admin

SELinux can either be in an enabled or a disabled state. In order to check in which state it is running, we can make use of the getenforce command. There are two modes in which SELinux runs:

There are two modes in which SELinux runs:

  • Enforcing: This is the enabled state where all rules are applied.
  • Permissive: In this state, SELinux will not deny any access; however, denials are logged.

sestatus is used to get the status of a system running SELinux. It displays data about whether SELinux is enabled, disabled, the loaded policy and whether it is in enforcing or permissive mode. It can also be used to display the security context of files and processes listed in the /etc/sestatus.conf file.

To show the state of SELinux, you can use the sestatus command:

sestatus command sample output

sestatus Command Examples

1. To see the SELinux status:

# sestatus

2. To see the current status of the booleans:

# sestatus -b 

3. To check the contexts of a files and processes listed in /etc/sestatus.conf file:

# sestatus -v 

4. To see the sestatus help:

# sestatus --help 
Conclusion

There are three different modes when it comes to SELinux. While Enhanced is the only true mode that really protects us and enhances our server’s security, there are two other modes: Disabled and Permissive. Disabled means SELinux is turned off.

Filed Under: CentOS/RHEL, Linux

Some more articles you might also be interested in …

  1. CentOS / RHEL 7 : How to configure kdump using GUI
  2. How to view linux disk partitions (partition table)
  3. virt-sparsify: command not found
  4. How To Change Pacemaker Cluster Heartbeat Timeout In CentOS/RHEL 7
  5. How to disable swap in Linux
  6. CentOS / RHEL : How to resize (extend) existing Physical Volume (PV)
  7. How to find Which Process Is Killing mysqld With SIGKILL or SIGTERM on Linux
  8. How to check the PHP version on Linux
  9. How to Create and Manage Storage Domains in RedHat Virtualization (RHV)
  10. “xfs_log_force: error 5 returned” – XFS Error (CentOS/RHEL 7)

You May Also Like

Primary Sidebar

Recent Posts

  • grpck command – Remove corrupt or duplicate entries in the /etc/group and /etc/gshadow files.
  • xxd command – Expressed in hexadecimal form
  • sesearch: command not found
  • macof: command not found

© 2022 · The Geek Diary

  • Archives
  • Contact Us
  • Copyright