making the smartest use of SE Linux
- From: andy <geek_show@xxxxxxxxxxxxx>
- Date: Wed, 28 Feb 2007 20:53:02 +0000
Dear all
I noted with interest that Etch seems to automatically include SE Linux as part of the packages, and I was wanting a bit of a steer about how I, as a user on a small home LAN, can exploit the strength of SE Linux. There isn't anything for selinux in man or info, and this is how it is currently set up according to /etc/selinux/config:
# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
# enforcing - SELinux security policy is enforced.
# permissive - SELinux prints warnings instead of enforcing.
# disabled - No SELinux policy is loaded.
SELINUX=permissive
# SELINUXTYPE= can take one of these two values:
# refpolicy-targeted - Only targeted network daemons are protected.
# refpolicy-strict - Full SELinux protection.
# refpolicy-src - Custom policy built from source
SELINUXTYPE=refpolicy-targeted
# SETLOCALDEFS= Check local definition changes
SETLOCALDEFS=0
Thanks for any ideas and opinions.
All the best Debianistas
/A
--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx
- Prev by Date: Re: how to send files from a pc to my home server and viceversa
- Next by Date: Re: a dumb query? pls humor me
- Previous by thread: dm-crypt und xdm
- Next by thread: where does kmail keep its mail files?
- Index(es):
Relevant Pages
- Re: How NSA access was built into Windows
... I didn't want you to jump ship either. ... were more than willing to damn SELinux
and search for bogey men in the closet. ... Someone asked me what Linux I ... personalities
here and how they problem solve. ... (Fedora) - Re: Firefox Acroread plugin not working
... much committment Adobe has in supporting linux. ... let's give them credit for
providing acrobat reader for Linux. ... Linux distributions use SELinux and I think
that Fedora is pretty much ... Copyright 2006 by Maurice Eugene Heskett, ... (Fedora) - Re: user monitoring tools
... renames a file, transfers the file to a removable media, what files ... In order
to convince my boss to start switching to linux, ... I believe that selinux can
do what you want. ... looking for are selinux-* and acct. ... (Ubuntu) - Re: How best get rid of SELinux?
... I'm not an expert at Linux packaging, ... which could run with optionally
installed SELinux, ... I had considered Gentoo for precisely that reason. ...
If replacing the key sources with those from upstream is easy, ... (Fedora) - Re: brute force ssh attack
... If the original poster had done that, ... > job with SELinux, but
if they did a good job with SELinux they wouldn't be ... As Linux becomes more popular,
there will be more and more 'inexperienced ... sysadmin practices in grade school, this
issue ... (Fedora)
