diff options
| author | Stonewall Jackson <stonewall@sacredheartsc.com> | 2023-02-20 12:00:23 -0500 |
|---|---|---|
| committer | Stonewall Jackson <stonewall@sacredheartsc.com> | 2023-02-20 12:00:23 -0500 |
| commit | 8ed0e55d777c3fd019aade94a68e4aaf33aab7f6 (patch) | |
| tree | 9c6a466247b8764b51ca5e16caed34d6d7273731 /roles/selinux | |
| parent | 69033b0afbc1c0543b9161d00bf03bf3903b90eb (diff) | |
| download | selfhosted-8ed0e55d777c3fd019aade94a68e4aaf33aab7f6.tar.gz selfhosted-8ed0e55d777c3fd019aade94a68e4aaf33aab7f6.zip | |
selinux: add readme
Diffstat (limited to 'roles/selinux')
| -rw-r--r-- | roles/selinux/README.md | 32 |
1 files changed, 32 insertions, 0 deletions
diff --git a/roles/selinux/README.md b/roles/selinux/README.md new file mode 100644 index 0000000..97c0489 --- /dev/null +++ b/roles/selinux/README.md @@ -0,0 +1,32 @@ +SELinux +======= + +Description +----------- + +The `selinux` role sets the SELinux enforcement policy, enables `auditd`, and +reboots the host (if necessary). + +Variables +--------- + +This role **accepts** the following variables: + +Variable | Default | Description +------------------|---------|------------ +`selinux_enabled` | yes | `enforcing` if true, `disabled` if false + + +Usage +----- + +Example playbook: + +````yaml +- name: set selinux policy + hosts: all + roles: + - role: selinux + vars: + selinux_enabled: yes +```` |