SELinux
Security-enhanced Linux is a research prototype of the Linux kernel and a number of utilities with enhanced security functionality designed simply to demonstrate the value of mandatory access controls to the Linux community and how such controls could be added to Linux.
Selinux: NSA's Open Source Security Enhanced Linux
Learn more
Bill McCarty The Security-enhanced Linux kernel contains new architectural components originally developed to improve the security of the Flask operating system. These architectural components provide general support for the enforcement of many kinds of mandatory access control policies, including those based on the concepts of Type Enforcement, Role-based Access Control, and Multi-level Security.

These are our most popular posts: what is selinux

Trying out initramfs with selinux and grsec

This file controls the state of SELinux on the system. # SELINUX= can take one of these three values: # enforcing - SELinux security policy is enforced. # permissive - SELinux prints warnings instead of enforcing. # disabled ... read more

Fedora SELinux -- Re: Fedora 16 AVC at boot time

On a SELinux system (using a strict policy, enforcing mode) running dracut in the sysadm t domain doesnt work, so I had to create a dracut t domain (which has been pushed to the Portage tree yesterday). But other than that, ... read more

What is the difference between an SELinux domain an an SELinux ...

As an aside the postinst file for selinux-basics was last changed in 2006 (thanks Erich Schubert). This package is part of the new design of SE Linux in Debian and some bits of it havent needed to be changed for 6 years! read more

SE Linux Status in Debian 2012-01

I was asked at the Lisa 11 conference by a backup utility developer, How should he save and restore SELinux security ... read more