SCIENTIFIC-LINUX-USERS Archives

October 2011

SCIENTIFIC-LINUX-USERS@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: Is removing selinux a bad idea?
From:
Mike's List <[log in to unmask]>
Reply To:
Mike's List <[log in to unmask]>
Date:
Thu, 20 Oct 2011 23:46:26 -0500
Content-Type:
TEXT/PLAIN
Parts/Attachments:
TEXT/PLAIN (15 lines) 
On Thu, 20 Oct 2011, Todd And Margo Chester wrote:

> Is selinux effective enough as an "extra line of defense against intruders"?
> or mostly just a pain in the neck.  I would like the extra line of defense, 
> but only
> if it works.

It depends on what you're running on the server and your IT environment.  A
good iptables rule/s should go a long way.  Allowing, or not allowing,
certain users access to certain services, applications, etc. is another
good way to start.


Mike

ATOM RSS1 RSS2