Red Hat ENTERPRISE LINUX 4 - SELINUX GUIDE Manual page 93

Chapter 6. Tools for Manipulating and Analyzing SELinux
interface, source executable, path to the target, and hostname. Criteria matching is all or any. When
you choose a context for a filter, such as under Target Type clicking on Types:, the Select Target
Types window pops up with the available types, as shown in Figure 6-4. These types are just the ones
that are represented in the audit logs:
Figure 6-4. seaudit Editing Filters Select Target Types Window
Instead of picking exact types, you can use wildcard and related matching mechanisms, collectively
called globbing. The techniques are detailed in Table 6-2. All globbing expressions are case sensitive.
Glob Type
?
*
[...]
[x-y]
Behavior
Matches any single character. For example,
, , , and so forth.
abc aqc a1c
Matches one or more characters. For example,
matches ,
regular regex
A list of characters searched for in a particular position. For
example, matches
a[bde]c
brackets cannot be empty.
This searches for the range of specified characters. The
range is
[ beginning_of_range - end_of_range ]
can specify more than one range. For example,
matches any word that begins with an
and has only one alpha character in between, such as
, and . Another example is
hmly hlly
gives you every combination except
inclusive, for example,
just .
b
, , and so forth.
regexp
, , and
abc adc aec
and ends with an
h
1[2-46-9]0
. The range is
150
includes , , and
[a-c] a b
79
matches
a?c
reg*
. The
. You
h[a-z]ly
ly
,
hrly
, which
, and not
c