[CentOS] Centos 5.x SElinux issues
Jim Perrin
jperrin at gmail.com
Thu Mar 5 21:38:35 UTC 2009
On Thu, Mar 5, 2009 at 2:58 PM, Noob Centos Admin
<centos.admin at gmail.com> wrote:
> Just my noob opinion, that if there's no practical and definitive
> benefit from enabling SELinux, for the time being until it is matured,
> the best thing to do is just set it to off. Otherwise, it just
> generally causes trouble and runs up tons of log as it is.
>
> I'd love to be enlightened on this though :)
Real world example -> http://www.linuxjournal.com/article/9176
SELinux stopped a mambo exploit from compromising the system. For LAMP
systems, selinux and mod_security are pretty much a requirement for a
secure setup.
--
During times of universal deceit, telling the truth becomes a revolutionary act.
George Orwell
More information about the CentOS
mailing list