Ronald P Guilmet on 28 Aug 2017 18:22:37 -0700


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] SELinux Talk a Central


I was asked to provide a blurb of the upcoming talk.

There is a common thing of disabling SELinux and continuing on. This, however, is not best practice in production. SELinux solves a particular problem. Think of it as an application firewall. If your server is compromised by an exploit for httpd or sftp, for example, that exploit will have access to anything that service owns. We will look at how a (type) context is assigned to a service or directory allowing or denying access. I'm not big on slides, so I plan to do most of this from the keyboard.

Enjoy

--
Ron Guilmet
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug