sepolicy-communicate - Generate a report showing if two SELinux Pol‐ icy Domains can communicate
sepolicy communicate [-h] -s SOURCE -t TARGET [-c TCLASS] [-S SOURCEACCESS] [-T TARGETACCESS]
Use sepolicy communicate to examine SELinux Policy to if a source SELinux Domain can communicate with a target SELinux Domain. The default command looks to see if there are any file types that the source domain can write, which the target domain can read.
-c, --class Specify the SELinux class which the source domain will attempt to communicate with the target domain. (Default file) -h, --help Display help message -s, --source Specify the source SELinux domain type. -S, --sourceaccess Specify the list of accesses used by the source SELinux domain type to communicate with the target domain. Default Open, Write. -t, --target Specify the target SELinux domain type. -T, --targetaccess Specify the list of accesses used by the target SELinux domain type to receive communications from the source domain. Default Open, Read.
This man page was written by Daniel Walsh <firstname.lastname@example.org>
This page is part of the selinux (Security-Enhanced Linux user-space libraries and tools) project. Information about the project can be found at ⟨https://github.com/SELinuxProject/selinux/wiki⟩. If you have a bug report for this manual page, see ⟨https://github.com/SELinuxProject/selinux/wiki/Contributing⟩. This page was obtained from the project's upstream Git repository ⟨https://github.com/SELinuxProject/selinux⟩ on 2017-04-25. If you discover any rendering problems in this HTML version of the page, or you believe there is a better or more up-to-date source for the page, or you have corrections or improvements to the information in this COLOPHON (which is not part of the original manual page), send a mail to email@example.com 20121005 sepolicy-communicate(8)
Pages that refer to this page: sepolicy(8)