This part of the book focuses more on practical tasks and provides information how to set up and configure various services with SELinux. For each service, there are listed the most common types and Booleans with the specifications. Also included are real-world examples of configuring those services and demonstrations of how SELinux complements their operation.
When SELinux is in enforcing mode, the default policy used in Fedora, is the targeted policy. Processes that are targeted run in a confined domain, and processes that are not targeted run in an unconfined domain. See
Section 10.3, “Targeted Policy” for more information about targeted policy and confined and unconfined processes.