I'm using SELinux in RHEL and I see that there is a default maximum of 1024 categories.
MCS in Red Hat Enterprise Linux supports 1024 different categories: c0 through to c1023. s0-s0:c0.c1023 is sensitivity s0 and authorized for all categories.
According to RHEL6 SELinux documentation.
有没有办法增加这个最大值?
答案1
类别的数量是在 SELinux 策略构建时配置的。要更改MCS类别的数量,您需要重建基础策略和所有策略模块。
MCS_CATS类别的数量由selinux-policy 的 Makefile定义。目标和选项记录在自述文件。