sedispol 은 컴파일된 커널의 selinux policy module을 확인할 수 있는 유틸리티이다.
# sedispol /etc/selinux/targeted/policy/policy.24
Select a command:
1) display unconditional AVTAB
2) display conditional AVTAB (entirely)
3) display conditional AVTAG (only ENABLED rules)
4) display conditional AVTAB (only DISABLED rules)
5) display conditional bools
6) display conditional expressions
7) change a boolean value
c) display policy capabilities
p) display the list of permissive types
u) display unknown handling setting
f) set output file
m) display menu
q) quit
CODE