Skip to content
/ selinuxlab Public

Ansible playbook for preparing SELinux Lab on Red Hat Enterprise Linux systems.

License

GPL-3.0 license
1 star 9 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ldelouw/selinuxlab

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

46 Commits
files
files
 
 
inventory
inventory
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
ansible.cfg
ansible.cfg
 
 
setup-lab.yml
setup-lab.yml
 
 

Repository files navigation

selinuxlab

This is an Ansible playbook and related files to set up a SELinux Lab on Redhat Enterprise Linux for educational purposes.

Authors

Cases covered:

  • Setting wromg permissions to /etc/shadow and see that SELinux prevents information disclosure by a CGI script trying to read the shadow file
  • Setting up an NFS Server with protocol version 4.2 which exports SElinux file contexts
  • Setting up a simple SMB Server for two use cases: Home directory mount and mount of a generic share
  • Installation of a Tomcat server with a example application to be confined

Operating Systems

This playbook and lab has been tested with the following Operating Systems:

  • RHEL8
  • RHEL9
  • RHEL10 (actually with CentOS Stream 10 which is the upstream project of the upcomming RHEL10 system)

Usage:

ansible-play -u root -k setup-lab.yml

Future development

This repo will be updated as the lab will evolve. We are happy to get input from other contributers.

About

Ansible playbook for preparing SELinux Lab on Red Hat Enterprise Linux systems.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1 star

Watchers

2 watching

Forks

9 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages