In this chapter
The reference policy is a newer method for building SELinux policies with the goal of making the policy easier to understand, modify, maintain, and validate. These goals are largely achieved through greater application of modern software engineering principles, such as modularity and encapsulation. The reference policy also allows strict and targeted policy variants to be built from the same source tree and incorporates support for emerging SELinux technologies, such as loadable modules. |