On Fri, 2 Sep 2011, John Doe wrote: > I am in the process of trying (and convincing my colleagues) to learn/setup > > selinux as we switch to 6.0... > Quick question: do I really "need" to install the setools/setroubleshoot > packages or can I live without them? They want to install 80 packages > (gnome stuff, gstreamer, gtk, tcl/tk...) and I would like to avoid installing > all sort of graphical tools/libs on my lean servers. > Can I just install setools-console by example? What does experiemntation with yum in a testing mode indicate with the packageset on your box - dependency trees have an effectively infinite number of permutations > Is there a console only equivalent for setroubleshoot? > > If you know a must-have "selinux for dummies" like howto, apart from > Redhat/Fedora doc or CentOS wiki What is wrong with the article at: http://wiki.centos.org/HowTos/SELinux as the timestamps will indicate another CentOS dev team member pointed out some deficiencies to me in it last night, and I was working on it for a couple of hours, and then a docs group member did style cleanups behind me It is not a completed work, but it is now relevant to CentOS 6 It also covers writing custom rules for local 'in house' applications I also know that the CentOS Planet RSS aggregator carried a rather long teaching rant I wrote a while back http://orcorc.blogspot.com/2010/12/ripping-out-safeties.html seeming right before I injured my ankle, from the datestamp -- probably a bad karhma reward from the internet dieties and sprirts for my attitidinal expectation that technical people do research before asking yeah -- I am just a sore head -- that's it -- Russ herrold