Kernel freak <kernelfreak@xxxxxxxxx> wrote: >On Tue, Jan 7, 2014 at 5:02 PM, bigclouds <bigclouds@xxxxxxx> wrote: > >> hi,all >> i have read some articales, but not comprehensive. >> 1. is there some articles which introduce the architeture of >selinux, >> use space and kernel space architeture , and how they communicate? >> i want to know every parts of selinux and how they work with each >other. >> >I would recommend SELinux by example. It's an old book, but really nice >to >understand SELinux. Some knowledge of Linux system is beneficial before >reading. > >> >> >> 2. >> any articales about how to write a policy(rule,module)? >> i have read some, but still have many confusion >> >The above book surely should help. Download the policies and read it. >Try >to tinker around in permissive mode, read the audit data. I believe >that is >a good start. Have fun. > >> >> thanks very much. >> >> >> >> >> _______________________________________________ >> Selinux mailing list >> Selinux@xxxxxxxxxxxxx >> To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. >> To get help, send an email containing "help" to >> Selinux-request@xxxxxxxxxxxxx. >> >> > > >------------------------------------------------------------------------ > >_______________________________________________ >Selinux mailing list >Selinux@xxxxxxxxxxxxx >To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. >To get help, send an email containing "help" to >Selinux-request@xxxxxxxxxxxxx. I liked Sven's book. He has some of the best documentation that I've seen. It was recently published so it is up to date as well. http://www.amazon.com/gp/aw/d/1783283173/ -- Matthew Thode _______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
