Hello,
According to Fedora Workstation Specifications [1], SELinux will be enabled in enforcing mode, using the targeted policy.
Is this really needed for Fedora workstation? We all have faced issues with SELinux that prevents applications to do, what are supposed to do. Applications rarely fail with certain operations and users don't
know why their applications fail. More over not even applications developers don't know what SELinux considers as a dangerous operation.
Some "advance(?)" users disable it anyway, less advance users don't know why their apps fail while app developers ignore it.
In any case, I don't think SELinux has helped much our PC to be more secure.
Moreover the latest bug found on Fedora 20 with SELinux/Scriptlets made the recovery totally impossible for many users,
and it proved (again) that SELinux isn't a really good software for desktop and desktop users.
From personal experience in Fedora 15 I was 2 days with an unbootable computer cause of SELinux and NVidia, till I found out what was wrong.
In Fedora 17 (I think) Chrome wasn't working. In Fedora 19, Cassandra wasn't starting.
I don't care if you keep it or not, since I've learned that I have to disable it.
However I would care, if I didn't know how to disable it, if I was new Fedora user, if I wasn't interesting to read mailing lists and forums, why things don't work.
- alex
-- desktop mailing list desktop@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/desktop
