Re: [PLUG] SELinux Talk a Central

JP Vossen on 28 Aug 2017 19:49:14 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] SELinux Talk a Central

From: JP Vossen <jp@jpsdomain.org>
To: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Subject: Re: [PLUG] SELinux Talk a Central
Date: Mon, 28 Aug 2017 22:49:09 -0400
Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1

On 08/28/2017 09:22 PM, Ronald P Guilmet wrote:

I was asked to provide a blurb of the upcoming talk.
There is a common thing of disabling SELinux and continuing on. This,however, is not best practice in production. SELinux solves a particularproblem. Think of it as an application firewall. If your server iscompromised by an exploit for httpd or sftp, for example, that exploitwill have access to anything that service owns. We will look at how a(type) context is assigned to a service or directory allowing or denyingaccess. I'm not big on slides, so I plan to do most of this from thekeyboard.


Ron, would you bring this around to West or North also?

Thanks,
JP
--  -------------------------------------------------------------------
JP Vossen, CISSP | http://www.jpsdomain.org/ | http://bashcookbook.com/
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

References:
- [PLUG] SELinux Talk a Central
  - From: Ronald P Guilmet <ronpguilmet@gmail.com>

Prev by Date: [PLUG] SELinux Talk a Central
Next by Date: Re: [PLUG] SELinux Talk a Central
Previous by thread: [PLUG] SELinux Talk a Central
Next by thread: Re: [PLUG] SELinux Talk a Central
Index(es):
- Date
- Thread