[CentOS] Centos 5.x SElinux issues

Jim Perrin jperrin at gmail.com
Thu Mar 5 21:38:35 UTC 2009


On Thu, Mar 5, 2009 at 2:58 PM, Noob Centos Admin
<centos.admin at gmail.com> wrote:

> Just my noob opinion, that if there's no practical and definitive
> benefit from enabling SELinux, for the time being until it is matured,
> the best thing to do is just set it to off. Otherwise, it just
> generally causes trouble and runs up tons of log as it is.
>
> I'd love to be enlightened on this though :)

Real world example -> http://www.linuxjournal.com/article/9176

SELinux stopped a mambo exploit from compromising the system. For LAMP
systems, selinux and mod_security are pretty much a requirement for a
secure setup.


-- 
During times of universal deceit, telling the truth becomes a revolutionary act.
George Orwell


More information about the CentOS mailing list