Unit 1 - Introduction to SELinuxDiscretionary Access Control vs. Mandatory Access Control SELinux History and Architecture Overview Elements of the SELinux security model: user identity and role domain and type sensitivity and categories security co
SELinux(Security-Enhanced Linux) 是美国国家安全局(NSA)对于强制访问控制的实现,是 Linux® 上最杰出的新安全子系统。NSA是在Linux社区的帮助下开发了一种访问控制体系,在这种访问控制体系的限制下,进程只能访问那些在他的任务中所需要文件。SELinux 默认安装在 Fedora 和 Red Hat Enterprise Linux 上,也可以作为其他发行版上容易安装的包得到。
ABSTRACT The SELinux mandatory access control (MAC) policy has recently added a multi-level security (MLS) model which is able to express a fine granularity of control over a subject’s access rights. The problem is that the richness of this policy m
ABSTRACT This contribution describes how Security Enhanced Linux (SELinux) is enabled on a Nokia 770 Internet Tablet. It will refer to a procedure done under a Debian [1] Testing (Etch) Environment. The procedure will also be possible under other Li