> Date: Saturday, July 22, 2023 10:43:57 -0400 > From: Bill Cunningham <bill.cu1234@xxxxxxxxx> > >> On 7/21/2023 11:10 PM, Tim via users wrote: >> >>> On Fri, 2023-07-21 at 16:05 -0400, Bill Cunningham wrote: >>> >>> but I warn you up to this point I always disable selinux. Not just >>> because idk what it is exactly, but it always starts running and I >>> have never really needed security. I guess that can change. >> Well, if you're running servers, especially one like WordPress >> with so many security flaws, and also plagued with bad advice >> about setting things up on it on the internet, the usefulness of >> using SELinux is magnified. >> >> But you haven't told us if you're making this world accessible, or >> you're just trying it out on your LAN. >> > > Basically trying it out. I am not anytime soon going to use it on > the internet. > Even when just "trying it out" one should do it with full security applied at all levels -- network/system/application. Adding security back in at the end generally results in something that's not well considered or integrated. This approach often leaves security holes or making security compromises because something that "worked", in an insecure environment, doesn't when appropriate security is applied. Also, *never* turn off security contexts/options just because you don't understand them, figure them out instead. Lowering security will invariably come back to haunt. _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
