一、查看SELinux状态:
1、我们可以通过查看配置文件的命令 cat /etc/selinux/config 来查看状态
[root@lill ~]# cat /etc/selinux/config
# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
# enforcing - SELinux security policy is enforced.
# permissive - SELinux prints warnings instead of enforcing.
# disabled - No SELinux policy is loaded.
SELINUX=enforcing
# SELINUXTYPE= can take one of these two values:
# targeted - Targeted processes are protected,
# mls - Multi Level Security protection.
SELINUXTYPE=targeted
发现SELinux共有3个状态enforcing (执行中)、permissive (不执行但产生警告)、disabled(关闭)。
2、也可以用这个命令检查:getenforce
[root@localhost /]# getenforce
Enforcing
二、关闭SELinux:
1、临时关闭(重启机器后失效):
#setenforce 0设置为permissive模式;setenforce 1 设置为enforcing模式;
#setenforce 0设置为permissive模式;setenforce 1 设置为enforcing模式;
setenforce 0
2、永久关闭(需要重启机器):
sed -i s#SELINUX=enforcing#SELINUX=disabled# /etc/selinux/config
重启机器即可
reboot
