Examples of using Selinux in Chinese and their translations into English
{-}
-
Political
-
Ecclesiastic
-
Programming
安全命名空间被SELinux等模块使用。
The security namespace is used by SELinux.在安装的系统中设置SELinux状态。
Sets the state of SELinux on the installed system.配置selinux,以支持系统中的服务.
Configuration of SELinux in order to support service.不过SEAndroid项目的范畴并不局限于SELinux。
However, the scope of the project is not limited to SELinux.通过SELinux安全功能提供最高级别的保护。
Highest-grade protection via the SELinux security feature.宽容模式-仅记录但不强制执行SELinux安全政策。
In this mode, SELinux enables but does not enforce security policies.本文将探究SELinux背后的思想及其基本架构。
This article explores the ideas behind SELinux and its basic architecture.SELinux的一个问题在于,它需要一个支持扩展属性的文件系统;.
One issue with SELinux is that it requires a file system that can support extended attributes;请参考如下文档以了解有关Fedora中SELinux实现的更多信息:.
Refer to Linux包含各种内置工具和模块(如SELinux),有助于进一步锁定、监控、报告和修复安全问题。
Linux has built-in tools and modules- like SELinux- to help further lock down, monitor, report, and remedy security issues.Permissive:在Permissive模式下,SELinux会被启用但不会实施安全性政策,而只会发出警告及记录行动。
Permissive: In Permissive mode, SELinux is enabled but will not enforce the security policy, only warn and log actions.Selinux通过在其策略中的类型周围定义规则来划分进程,以确定允许访问哪些进程。
SELinux compartmentalizes processes by defining rules around the types in its policy to determine what the processes are allowed to access.对每个正在进行的用户或进程,SELinux分配一个三字符串上下文,包含了用户名、角色和域(或者类型)。
For every current user or process, SELinux assigns a three string context consisting of a username, role, and domain(or type).SELinux只有当程序执行时才允许发生安全传输,它控制进程的权限(不是一个进程的一部分)。
SELinux permits security transitions to occur only upon program execution, and it controls process' permissions(not portions of a process).文件、网络端口和其他硬件均有可能含有SELinux上下文,有一个名字、角色(不常使用)和类型组成。
Files, network ports, and other hardware also have an SELinux context, consisting of 然而,这个漏洞却可以绕过SELinux并生成root后门,而我们的PoC则只能修改系统的服务代码。
However, this recent exploit can bypass SELinux and plant a root backdoor, while the PoC can only modify the service code of the system.Enforcing:这个缺省模式会在系统上启用并实施SELinux的安全性政策,拒绝访问及记录行动.
Enforcing: The default mode which will enable and enforce the SELinux security policy on the system, denying access and logging actions.AppArmor是作为SELinux的替代品出现的,因为对SELinux的批评者认为它难以让管理员设置和维护。
AppArmor is offered in part as an alternative to SELinux, which critics consider difficult for administrators to set up and maintain.SELinux(安全增强型Linux)是一个Linux内核安全模块,允许管理员和用户更好地控制访问控制。
SELinux(Security Enhanced Linux) is a Linux kernel security module that allows administrators and users more control over access controls.为Brillo所写代码需要被移植,替代“底层I/O代码和SELinux配置,同时调用新的周边API”。
The code already written for Brillo needs to be ported,replacing“low-level I/O code and SELinux configurations with calls to the new Peripheral API.”.SELinux是由美国国家安全局NSA对于强制访问控制的实现,是Linux上最杰出的新安全子系统。
SELinux, the U.S. National Security Agency's implementation of mandatory access control, is the most prominent new security subsystem in Linux.Linux容器虚拟化在RHEL7被完全支持,包括新的SELinux和其他与完全相关的改进以确保全面的安全。
Linux Container virtualization will be fully supported in RHEL7,including new SELinux and other security-related improvements to ensure full security.SELinux(安全性增强的Linux)是Linux内核安全性模块,它允许管理员和用户对访问控制进行更多控制。
SELinux(Security Enhanced Linux) is a Linux kernel security module that allows administrators and users more control over access controls.Fedora是世界上第一个默认提供强制访问控制(MandatoryAccessControl,MAC)安全系统的主流操作系统,使用的正是SELinux框架。
Fedora is the first mainstream operating system in the world to provide a Mandatory Access Control(MAC) security system by default,using the SELinux framework.SELinux是一个面向政府和行业的产品,由NSA、NetworkAssociates、Tresys以及其他组织设计和开发。
SELinux is a product of government and industry, with design and development provided by the NSA, Network Associates, Tresys, and many others.使用SELinux,您可以方便地创建一个只能运行特定程序并且只能在特定的上下文中写文件的Web服务器。
With SELinux, you could easily make a Web server that could only run specific programs and could only write to files SELinux是Linux内核中的强制访问控制(MAC)系统,用于增强基于自主访问控制(DAC)的现有安全模型。
SELinux is a mandatory access control(MAC) system in the Linux kernel used to augment the existing discretionary access control(DAC) security model.通过SELinux安全功能提供高级别的保护,保护系统服务免受攻击,提供了完全的透明性,实现轻松的扩展和采用。
SELinux不像AppArmor那样使用文件路径,而SELinux在追踪权限时使用文件系统去标记可执行文件。
SELinux does not use file paths like AppArmor, instead SELinux uses the filesystem to mark executables when keeping track of permissions.SELinux(Security-EnhancedLinux)是美国国家安全局(NSA)对于强制访问控制的实现,是Linux历史上最杰出的新安全子系统。
SELinux, the U.S. National Security Agency's implementation of mandatory access control, is the most prominent new security subsystem in Linux.
