selinux_custom_module

Overview Versions Insights

SELinux custom module role

This role installs custom SELinux modules and set SELinux to Enforcing mode.

Variables

General

selinux_config_dir: [default: /etc/selinux]: Directory where will be store all SELinux module files from this role

SELinux custom modules settings

selinux_custom_modules: [default: {}]: SELinux modules declarations
selinux_custom_modules.key: [required]: The identifier of the module (e.g. first-custom-module:)
selinux_custom_modules.key.value: [required]: Declarate the source code of custom SELinux modules

Dependencies

None

Example

---
- host: localhost
  roles:
    - serverbee.selinux_custom_module
  vars:
    selinux_custom_modules:
      first-custom-module: |
        module first-custom-module 1.0;
        require {
                type myapp_t;
                type myapp_port_t;
                class tcp_socket name_bind;
        }
        allow myapp_t myapp_port_t:tcp_socket name_bind;

License

GPLv3 license

Author Information

Bohdan Saienko

About

Role to install custom SELinux modules.

role selinux

Install

ansible-galaxy install serverbee/ansible-role-selinux-custom-module

GitHub repository

1 stars

0 forks

0 open issues

License

Unknown

Downloads

924

Owner

ServerBee