SELinux (Security Enhanced Linux ) is a Linux kernel security module that allows administrators and users more control over access controls. It allows access based on SELinux policy rules.
SELinux policy rules specify how processes and users interact with each other as well as how processes and users interact with files.
When no SELinux policy rule explicitly allows access, such as for a process opening a file, access is denied.
SELinux has three modes:
- Enforcing: SELinux allows access based on SELinux policy rules.
- Permissive: SELinux only logs actions that would have been denied if running in enforcing mode.
- Disabled: No SELinux policy is loaded.
By default, in CentOS 7, SELinux is enabled and in enforcing mode.
It is recommended to keep SELinux in enforcing mode, but in some cases, you may need to set it to a permissive mode or disable it completely.
In this tutorial, we will show you how to disable SELinux on CentOS 7 systems.