appconfig/* | Defines contexts for special applications, such as init . |
assert.te | Defines TE assertions. |
attrib.te | Defines type attributes. |
constraints | Defines Boolean constraints on permissions. |
domains/admin.te | Defines administrative domains. |
domains/ misc/* | Defines miscellaneous domains, such as the kernel_t domain. |
domains/ program/* | Defines domains for specific programs. |
domains/ user .te | Defines user domains. |
file_contexts/ misc | Defines security contexts of miscellaneous domains. |
file_contexts/ program/* | Defines security contexts for files related to specific programs. |
file_contexts/types.fc | Defines security contexts applied when the security policy is installed. |
flask /* | Contains files ”such as security_classes , initial_sids , and access_vectors ” that define basic Flask elements and their characteristics. Generally, only SELinux developers modify the contents of this directory. |
fs_use | Defines the labeling behavior for specific filesystem types. |
genfs_contexts | Defines security contexts for filesystem types not supporting persistent labels or that use a fixed labeling scheme. |
initial_sid_contexts | Defines the security context for each initial SID. Generally, only SELinux developers modify the contents of this file. |
macros/admin_macros.te | Defines macros used in specifying administrative domains. |
macros/base_user_macros.te | Defines rules and types related to an ordinary user domain. |
macros/core_macros.te | Defines core TE macros. |
macros/global_macros.te | Defines macros used throughout the policy. |
macros/mini_user_macros.te | Defines macros used in specifying very simple user domains. |
macros/program/* | Defines macros used to specify derived domains that support policy separation among multiple instances of a single program. |
macros/user_macros.te | Defines macros used in specifying user domains. |
Makefile | Supports common administrative operations, as explained in the section of this chapter titled "Using the SELinux Makefile." |
mls | Defines the MLS configuration. |
net_contexts | Defines the security contexts of network objects. |
policy.?? | The policy binary file; for example, policy.17 . |
policy.conf | The policy source file, assembled under control of the Makefile , from the component sources. |
rbac | Defines the RBAC (Role-Based Access Control) configuration. |
serviceusers | Defines users related to specific services (Fedora Core). |
tmp/* | A working directory used during policy compilation. The Makefile assembles the component files of the TE configuration into the file tmp/all.te. |
tunable.te | Provides tweakable macro definitions for tuning the policy (Fedora Core). |
types/* | Contains files defining general types ”types not associated with a particular domain ”and related rules. |
users | Defines the users. |