SElinux

[Digimer]

On 15/08/14 11:11 PM, Howard Gibson wrote:
>     On my home computer and laptops, SElinux is a pain in the butt.
>
>     Who is protected by SElinux?  Does it protect the system from rogue users, or does it protect from external crackers?

Say you had a web service installed, maybe without realizing. Now assume 
someone compromises that web interface while you enjoy a coffee at the 
local $coffee_house. SELinux just saved you from the compromised apache 
from getting control of your system because the apache context isn't 
allowed to touch system files.

etc.

SELinux is a pain, I will fully admit, but it is one well worth learning 
and getting comfortable with.

-- 
Digimer
Papers and Projects: https://alteeve.ca/w/
What if the cure for cancer is trapped in the mind of a person without 
access to education?
--
The Toronto Linux Users Group.      Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists