A great article on why to use SeLinux

Patrick O'Callaghan pocallaghan at gmail.com
Fri Feb 29 14:32:06 UTC 2008

On Fri, 2008-02-29 at 08:41 +0000, klybear wrote:
> On Thu, 28 Feb 2008 09:31:05 +0900, John Summerfield wrote:
> > The only penetrations I've seen arrived by ssh. I don't think selinux
> > would have helped there; the sorts of restrictions I can think of would
> > also prevent the user from doing what users ought be able to do such as
> > download stuff (including email), sending email and so forth.
> I'm new full time linux user, having temped with one or two distros in 
> the past, and I have to say that my experience of selinux has been 
> frustrating. I never had any Selinux issues with Ubuntu or Debian, but 
> since using Fedora, three of the four problems I've solved so far turned 
> out to be related selinux permissions and the fourth one I'm still 
> working on :)

AFAIK Selinux is disabled by default in Ubuntu and Debian. Note that you
can also disable it (or limit it to warnings) in Fedora.


More information about the fedora-list mailing list