Solved

SE Linux management > Is it best set to Enforcing mode . Disabled? (fedora 14)  - Linux n00b

Posted on 2011-03-22
3
423 Views
Last Modified: 2012-05-11

Mate set it like this on a test box.

Should I revert to Permissive or enforcing?

HAving no joy setting up SWAT and Im wondering if this is the spanner in the setup works.

0
Comment
Question by:fcek
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 31

Accepted Solution

by:
farzanj earned 167 total points
ID: 35195022
Enforcing is good but you have to know what you are doing.  If you are using GUI and SELinux tools, it gives you tips what to do.

Set it to permissive and make sure everything is running that way it is running.  Make sure to check the logs and SELinux messages in Permissive mode that informs about issues.  Once all the issues are resolved, set it to enforcing.

Most people in the Linux world don't know how to use SELinux and therefore hate it.  It is a very good tool provided that you know how to use it and you can reap the full range of security benefits if you can write your own policies!

If you don't care about this extra layer of security and want to avoid hassle, you may simply disable it.
0
 
LVL 29

Assisted Solution

by:fosiul01
fosiul01 earned 167 total points
ID: 35195029
You should use Permissive or disabled...

best is just disabled it.

you will have to be really really good in linux to use selinux with every services....

I hardly see people use selinux  , and most of the time you will see linux base software is saying, turn off the selinux ..

example. if you go for Virtual server, selinux will be off straight way..

so dont worry about selinux.. just disable it for time being.

0
 
LVL 79

Assisted Solution

by:arnold
arnold earned 166 total points
ID: 35195090
SELinux is a tool that helps secure one's system from different type of attacks. And in an event when an attack gets on the server, selinux in some cases will make it harder for the attacker to further damage/compromise the system.

0

Featured Post

[Live Webinar] The Cloud Skills Gap

As Cloud technologies come of age, business leaders grapple with the impact it has on their team's skills and the gap associated with the use of a cloud platform.

Join experts from 451 Research and Concerto Cloud Services on July 27th where we will examine fact and fiction.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I am a long time windows user and for me it is normal to have spaces in directory and file names. Changing to Linux I found myself frustrated when I moved my windows data over to my new Linux computer. The problem occurs when at the command line.…
Linux users are sometimes dumbfounded by the severe lack of documentation on a topic. Sometimes, the documentation is copious, but other times, you end up with some obscure "it varies depending on your distribution" over and over when searching for …
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
Suggested Courses

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question