On 04/13/2017 04:05 AM, Nicolas Kovacs wrote: > Le 13/04/2017 à 04:27, Robert Moskowitz a écrit : >> But make sure to have SELinux enabled if you do not run it chrooted. >> >> I have mine running that way. > I bluntly admit not using SELinux, because until now, I mainly used more > bone-headed systems that didn't implement it. Maybe this is the right > time to get started. > > I understand there's a wealth of information about SELinux. Any > recommendations for a newbie-friendly primer? I don't mind to RTFM, even > extensive documentation, but I prefer stuff that's well-written. For basic authoritative server, I have the one magic setting needed in your configuration. Otherwise it is working 'out of the box'.