I have SELinux disabled, the system has been rebooted -- yet, the ls -l output is clearly showing the "." at the end of the permissions which indicates a context still present.

How can I disable this system-wide - moreso, I wonder why it's happening. These systems were just built and I have 2 which I installed pretty much identically.


thanks.

Labels on files don't just go away when SELinux is disabled, it is just that the checks aren't made using them.

Why do you need it disabled?

This++

We have some systems that need SELinux disabled to run. Don't ask me way, I don't write code.

In any case, I installed two identical systems of CentOS 6.4. One system shows the dots a the end of the LS output, the other does not. Both have SElinux disabled. That's very bizarre.

Not really. If the install restorecon did not run, then the labels will not be applied.

SeLinux is a security framework which works over, normal permissions, they have defined a policy which contains information about who can access what, when SELinux is in enforcing mode, it will check and control, access to resources. This is accomplished by meanse of security context, like in our normal permissions we have "read" "write" and "execute", in same manner selinux have diffrent type of security context labled on all the files, if selinux is in enforcing mode these context will be checked and access will be allowed accordingly. But if selinux is disabled security context will not be checked, thus SELinux will not interfear in your access when it is disabled even if it shows security context files and folders.

regards

And you really ought to find out why you have to run systems with low security.