[CentOS] bind vs. bind-chroot

Thu Apr 13 10:10:29 UTC 2017
Robert Moskowitz <rgm at htt-consult.com>

On 04/13/2017 04:05 AM, Nicolas Kovacs wrote:
> Le 13/04/2017 à 04:27, Robert Moskowitz a écrit :
>> But make sure to have SELinux enabled if you do not run it chrooted.
>> I have mine running that way.
> I bluntly admit not using SELinux, because until now, I mainly used more
> bone-headed systems that didn't implement it. Maybe this is the right
> time to get started.
> I understand there's a wealth of information about SELinux. Any
> recommendations for a newbie-friendly primer? I don't mind to RTFM, even
> extensive documentation, but I prefer stuff that's well-written.

For basic authoritative server, I have the one magic setting needed in 
your configuration.

Otherwise it is working 'out of the box'.