Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat Enterprise Linux 9
System Settings
SELinux
SELinux - Booleans
Configure the deny_execmem SELinux Boolean
Configure the deny_execmem SELinux Boolean
An XCCDF Rule
Details
Profiles
Prose
Configure the deny_execmem SELinux Boolean
Medium Severity
By default, the SELinux boolean
deny_execmem
is disabled. This setting should be configured to
.
To set the
deny_execmem
SELinux boolean, run the following command:
$ sudo setsebool -P deny_execmem