Domain transition
Now, let's find out how a process accesses other processes.
Let's consider that the vsftpd
process is running; if it's not started, we can start it using the following command:
systemctl start vsftpd
The vsftpd
process is started by the systemd
process; this is a replacement of the Sys V init
process and runs within a context of init_t
:
ps -eZ | grep init
The systemd
process running under the init_t
domain is very short lived; it invokes /usr/sbin/vsftpd
, which has a type context ftpd_exec_t
, and when this binary executable starts, it becomes the vsftpd
service itself and runs in the ftpd_t
domain.
So, here's the systemd
process ...
Get Mastering CentOS 7 Linux Server now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.