1.6.1.3 Ensure SELinux policy is configured

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Security configuration requirements vary from site to site. Some sites may mandate a policy that is stricter than the default policy, which is perfectly acceptable. This item is intended to ensure that at least the default recommendations are met.

Solution

Edit the /etc/selinux/config file to set the SELINUXTYPE parameter: SELINUXTYPE=targeted

See Also

https://workbench.cisecurity.org/files/1861

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-3(3)

Plugin: Unix

Control ID: 9e06d1400546976a69e51c8a1a6bd46ce559a6dc4a887047e2b5a41d0a72a490