1 2 3 4 5
# SELinux-aware progams write to entries here SANDBOX_WRITE="${SANDBOX_WRITE}:/selinux/:/sys/fs/selinux/" # for setfscreatecon SANDBOX_WRITE="${SANDBOX_WRITE}:/proc/self/"