A Linux administrator is troubleshooting an application that is failing to start and suspects that an SELinux policy is the cause. The administrator needs to log any potential policy violations for later analysis but wants to allow the application to run without being blocked. Which SELinux mode should the administrator set the system to?
The correct mode is 'Permissive'. In permissive mode, SELinux does not enforce security policies but logs any actions that would have been denied, which is ideal for troubleshooting and policy refinement. 'Enforcing' mode would block the action, preventing the application from running. 'Disabled' mode would turn off SELinux entirely, so no violations would be logged. 'Unconfined' is a type of SELinux context or domain for users or processes, not a system-wide operational mode.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What exactly is SELinux and what is its purpose?
Open an interactive chat with Bash
What are the differences between SELinux modes: Enforcing, Permissive, and Disabled?
Open an interactive chat with Bash
How do I check the current SELinux mode on my Linux system?