Johnny Hughes wrote:
SELinux is different ... but it is certainly more secure than not running it.
Biggest problem with selinux is that it is so badly integrated into the toolchain. You have to remember to alter selinux for every little thing you do, you have to remember to goups and policies you made.
SElinux is just another tool. System security involves the entire system. It is not possible to install some software product and then have everything secure.
Most blame SElinux when the problem is really pebkac. :) -- //Morten Torstensen //Email: morten@xxxxxxxxxxx //IM: Cartoon@xxxxxxxxx morten.torstensen@xxxxxxxxx And if it turns out that there is a God, I don't believe that he is evil. The worst that can be said is that he's an underachiever. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
