2.4. Security Policies

The heart of SELinux is the security policy. The policy assigns files to a security context, declares what processes are given what rights to these contexts, and handles transitions between security contexts. For example, when the init_t context launches Apache, the policy forces a transition to the httpd_t security domain.

Fedora Core ships with two distinct security policies, known as targeted and strict.

This document focuses on the strict policy, unless otherwise noted.

2.4.1. Access Decisions

Access decisions are made when a process running in a specified domain attempts to perform an action on a subject of a specified type. Policy is checked to determine if the desired operation is permitted.

2.4.2. Transition Decisions

Transition decisions determine what domain or type newly created processes or files are assigned to.

Executing a program in a child process may result in the new process running under a different domain than the parent process, if the program is defined as a domain entry point in the policy.

Newly created files are by default assigned the same type as their parent directory, but policy can override this behavior and specify a type to be assigned to specified files upon their creation.