[COLUG] SELinux
Jim Wildman
jim at rossberry.com
Mon May 12 21:07:21 EDT 2008
On Mon, 12 May 2008, Jeffrey Tadlock wrote:
> On Mon, May 12, 2008 at 9:01 AM, Scott Merrill <skippy at skippy.net> wrote:
>> Is anyone on the list actively using SELinux in their installations?
Yep
>
>> Does it help? If so, in what ways?
Say you have an old forgotten php script that gets found by a bot, and
compromised, then someone tries to use it to read /etc/passwd. No dice.
Nice log entry reported by logwatch, scrub the directory and off you go.
------------------------------------------------------------------------
Jim Wildman, CISSP, RHCE jim at rossberry.com http://www.rossberry.com
"Society in every state is a blessing, but Government, even in its best
state, is a necessary evil; in its worst state, an intolerable one."
Thomas Paine
More information about the colug432
mailing list