SE linux is from the devil

Computer builds, hardware and software discussion or troubleshooting, including peripherals. Essentially a general place to talk about desktop computers.
Locked
User avatar
Red Squirrel
Posts: 29213
Joined: Wed Dec 18, 2002 12:14 am
Location: Northern Ontario
Contact:
Contact Red Squirrel

SE linux is from the devil

Post by Red Squirrel »

It really is. I swear, that is the worse piece of software ever coded since the first virus.

I've been FRUSTRATED for about 2 days that apache is not working. Completly forgetting that newer RH/FC systems have that POS on by default, someone reminded me by trying to turn it off and I did. BINGO, everything works now! WEll not everything, but the rest is different issues, such as a sql driven site not loading because there is no sql database. :lol:

Whoever came up with the bright idea of SE Linux should get hit by 3 busses followed by a transport (to make sure).

Remember, ALWAYS turn SELinux off, if you actually want your server to work.

Archived topic from Iceteks, old topic ID:4686, old post ID:37213
Honk if you love Jesus, text if you want to meet Him!
Top
User avatar
richardj
Posts: 1382
Joined: Fri Sep 10, 2004 11:02 pm

SE linux is from the devil

Post by richardj »

I came across this.

Thought it might help?


--------------------------------------------------------------------------------

Network World's Linux & Open Source Newsletter, 01/22/07
New tool eases SELinux policy setup
By Phil Hochmuth

A new tool is available for Linux administrators interested in Security Enhanced Linux, but hesitant to deploy the technology due to its complexity. The software is Treysys Brickwall Security Suite, developed by Treysys, a Linux security software company specializing in SELinux development.

The Brickwall product provides a console-based management interface for creating and installing security policies and rules with SELinux. SELinux - first developed by the National Security Agency - is not a Linux distribution, but a security overlay on an existing Linux distribution such as Red Hat Enterprise Linux 4 (RHEL4). SELinux allows users to create policies that could limit what applications running on a machine can do, or what users can access certain applications or operating system components.

The problem with SELinux, some developers say, is that learning how to implement the technology is difficult. Writing policies for SELinux can be tricky, and it's easy to misconfigure an SELinux policy, which could inadvertently cause applications or services to become unavailable.

Finjan Software
What you can do to stop Web-based attacks.
Get an inside look at what's bypassing enterprise security solutions via real-world audits and data, and learn why proactive, behavior-based security is key to staying ahead of increasingly sophisticated Web-based attacks. Click here to attend now.


Brickwall gives users a graphical tool to define network access settings for specific applications on a Linux server, with built-in logic that makes the policies safe to implement, the software developers say. Linux system file protection policies and safeguards can also be set up through the software.

Treysys is offering three editions of Brickwall: Standard, Professional and Enterprise. Each is geared to work with RHEL4, which comes with SELinux support. The Standard Edition of Brickwall is a free download, and can be used on a single system, providing basic application-layer firewalling. Professional ($250) adds file access safeguards and more customizable policies. The Professional Edition ($5,000 for 10 licenses) allows users to create groups of RHEL4 servers, or profiles, and apply SELinux on a large scale. Remote management of SELinux policies is also possible with the Professional version.

http://www.tresys.com/products/brickwall-getitnow.html

Archived topic from Iceteks, old topic ID:4686, old post ID:37223
Top
Locked

Return to “Computer Hardware and Software”