Linux

Practical SELinux: Port contexts and handling access alerts

Last week was my third and final part of my series that introduced SELinux on Techrepublic: Practical SELinux: Port contexts and handling access alerts. This one finishes off what we were looking at in part two, and introduces port contexts (ensuring that a program can only listen to specified ports and nothing else), and shows us how to use sealert to look at violations that SELinux is reporting and how we can fix ...

Read More

Linux

Practical SELinux for the beginner: Contexts and labels

This week's techmail is Practical SELinux for the beginner: Contexts and labels which is part two of my series on SELinux. This one talks about how to get started with SELinux (how to turn it on or off), how to view contexts, and how to create new contexts, how to set them, and how to restore them. If you're new to SELinux, this is a good primer to get you started.

Read More

Linux

Introduction to SELinux: Don't let complexity scare you off

This week's techmail is Introduction to SELinux: Don't let complexity scare you off. This is the first of a three-part series that introduces SELinux and digs into some of the basics on how to change policies, add policies, troubleshoot SELinux, and basically give you enough info to not feel intimidated by it, and enough rope to hang yourself with it (just kidding!). So if you were like me and kept turning SELinux ...

Read More

Linux

Crispin responds to allegations that AppArmor is dying

A recent post from Russ Coker entitled AppArmor is Dead was tolling the death bells for AppArmor because SUSE decided to include SELinux in their operating system... not as the default, and not as a replacement for AppArmor, but it was included nonetheless. Russ determined that this was the beginning of the end for AppArmor, and I read it with some interest largely because Mandriva has settled on AppArmor as our security solution... ...

Read More