Solutions

Does the java process have SELinux policy defined in RHEL?

by ,


We have by far the largest RPM repository with NGINX module packages and VMODs for Varnish. If you want to install NGINX, Varnish, and lots of useful performance/security software with smooth yum upgrades for production use, this is the repository for you.
Active subscription is required.

Operating System and Software

  • Rocky Linux 8
  • CentOS 7
  • CentOS 6

Problem

  • Does the java process have a SELinux policy defined in RHEL?
  • Does Red Hat provide a custom SELinux policy for java?

How to Fix

  • Red Hat does not provide any defined policy for java process because java process runs in the context of the caller (application).

    For example: Any tomcat application is running java then java process will have context as `tomcat_t` because tomcat has defined domain to run in `tomcat_t`.
    
  • java is an interpreter like other interpreters similar to Bash, Python, Perl. So there is no specific domain for java.
  • Red Hat does not provide a custom SELinux policy. The creation of custom Security/SELinux policies is outside the Production Support Scope of Coverage.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: