-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 03/05/2014 02:11 PM, Les Mikesell wrote: > On Wed, Mar 5, 2014 at 9:19 AM, Daniel J Walsh <dwalsh at redhat.com> wrote: >> >> man zebra_selinux ... If you want to allow zebra daemon to write it >> configuration files, you must turn on the zebra_write_config boolean. >> Disabled by default. >> >> setsebool -P zebra_write_config 1 > > Is there some global registration facility for selinux context names or are > you the only one that knows them all? > Don't really know what you mean by that. getsebool -a Will list all booleans semanage boolean -l Will list them with a short description. man DOMAIN_selinux Is available for over 1000 applications. system-config-selinux Also can list booleans. If you want to look at all the types available you can use seinfo. seinfo -t for example. If you want to look at all allow rules, sesearch will tell you. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlMYgAAACgkQrlYvE4MpobOh4gCgsy/whuuitMzvH2p8Z1fyjzV5 CDcAn1/HLNGBJ0kwCUJbxOYe0plwy9+9 =KatO -----END PGP SIGNATURE-----