12 Facts About Security-Enhanced Linux

Security-Enhanced Linux is a Linux kernel security module that provides a mechanism for supporting access control security policies, including mandatory access controls .

SESecurity-Enhanced Linux is a set of kernel modifications and user-space tools that have been added to various Security-Enhanced Linux distributions.

The key concepts underlying SESecurity-Enhanced Linux can be traced to several earlier projects by the United States National Security Agency .

Security-Enhanced Linux kernel integrating SESecurity-Enhanced Linux enforces mandatory access control policies that confine user programs and system services, as well as access to files and network resources.

Security of an "unmodified" Security-Enhanced Linux system depends on the correctness of the kernel, of all the privileged applications, and of each of their configurations.

Related searches

From a purist perspective, SESecurity-Enhanced Linux provides a hybrid of concepts and capabilities drawn from mandatory access controls, mandatory integrity controls, role-based access control, and type enforcement architecture.

Comprehensive list of the original and external contributors to SESecurity-Enhanced Linux was hosted at the NSA website until maintenance ceased, sometime 2009.

For every current user or process, SESecurity-Enhanced Linux assigns a three string context consisting of a username, role, and domain .

SESecurity-Enhanced Linux adds the -Z switch to the shell commands ls, ps, and some others, allowing the security context of the files or process to be seen.

SESecurity-Enhanced Linux is popular in systems based on linux containers, such as CoreOS Container Security-Enhanced Linux and rkt.

SESecurity-Enhanced Linux is available since 2005 as part of Red Hat Enterprise Security-Enhanced Linux version 4 and all future releases.

SESecurity-Enhanced Linux represents one of several possible approaches to the problem of restricting the actions that installed software can take.