Introduction
This Notebook should help with explaining:
SELinux and its purpose in life.
The LSM / SELinux architecture, its supporting services and how they are implemented within GNU / Linux.
SELinux Networking, Virtual Machine, X-Windows, PostgreSQL and Apache/SELinux-Plus SELinux-aware
capabilities.
The core SELinux kernel policy language and how basic policy modules can be constructed for instructional
purposes.
An introduction to the new Common Intermediate Language (CIL) implementation.
The core SELinux policy management tools with examples of usage.
The Reference Policy architecture, its supporting services and how it is implemented.
The integration of SELinux within Android.
Notebook Overview
This volume has the following major sections:
SELinux Overview - Gives a description of SELinux and its major components to provide Mandatory Access
Control services for GNU / Linux. Hopefully it will show how all the SELinux components link together and how
SELinux-aware applications / object manager have been implemented (such as Networking, X-Windows,
PostgreSQL and virtual machines).
SELinux Conguration Files - Describes all known SELinux conguration les with samples. Also lists any
specic SELinux commands or libselinux APIs used by them.
SELinux Policy Language - Gives a brief description of each policy language statement, with supporting examples
taken from the Reference Policy source. Also an introduction to the new CIL language (Common Intermediate
Language).
The Reference Policy - Describes the Reference Policy and its supporting macros.
Android - An overview of the SELinux services used to support Android.
Object Classes and Permissions - Describes the SELinux object classes and permissions.
Notebook Examples
The Notebook examples are not embedded into any of the document formats described in https://github.com/
SELinuxProject/selinux-notebook/blob/main/BUILD.md, however they will have links to them in their build
directories.
Updated Editions
The SELinux Notebook is being maintained as part of the SELinux project, more recent editions may be available.
See: https://github.com/SELinuxProject/selinux-notebook
1.
2.
3.
4.
5.
6.
7.
8.
The SELinux Notebook
Page 3
