On Mon, Jun 18, 2007 at 10:31:30AM -0600, Stephen John Smoogen wrote: > On 6/18/07, Stephen Harris <lists at spuddy.org> wrote: > >I've not heard a good reason to keep SELinux enabled, to be honest. > >For high sensitivity stuff, sure (much like using SEOS on Solaris for high > >sensitivity machines - eg those where third parties might have access). > >But as a general rule for all machines? Why? > Good experience... I have had multiple webservers not have successful Yup. Webservers are machines where third parties might have access, and so are candidates for enhanced security processes such as SELinux or SEOS. I've never said there are _no_ cases for SELinux. I was questioning it as a general rule for all machines. -- rgds Stephen