SELinux/rpcd

nfs_selinux(8)        nfs Selinux Policy documentation         nfs_selinux(8)

NAME nfs_selinux - Security Enhanced Linux Policy for NFS

DESCRIPTION Security-Enhanced Linux  secures the nfs server via flexible mandatory access control.

BOOLEANS SELinux policy is customizable based on least access required. So by default  SElinux policy does not allow nfs to share files. If you want to setup this machine to share nfs partitions read only, you must  set the boolean nfs_export_all_ro boolean.

setsebool -P nfs_export_all_ro 1

If  you   want   to   share   files   read/write   you  must  set  the nfs_export_all_rw boolean.

setsebool -P nfs_export_all_rw 1

If you want to use a remote NFS server for the home directories on this machine, you must set the use_nfs_home_dir boolean.

setsebool -P use_nfs_home_dirs 1

system-config-securitylevel is  a  GUI  tool  available  to  customize SELinux policy settings.

AUTHOR This manual page was written by Dan Walsh .

SEE ALSpppO selinux(8), chcon(1), setsebool(8)

dwalsh@redhat.com                17 Jan 2005                   nfs_selinux(8)