software vendor telling me we have to disable selinux to use thier software....

software vendor telling me we have to disable selinux to use their software.... how dangerous is this?
XetroximynAsked:
Who is Participating?
 
Scott SilvaConnect With a Mentor Network AdministratorCommented:
The problem is most likely they don't know how to write selinux rules to allow their software... It usually involves running in "permissive" mode and then looking in selinux logs for what needs to be allowed.

Many people run without selinux enabled, and your risks are usually in line with the amount of exposure you have to the outside world.

http://www.lurking-grue.org/writingselinuxpolicyHOWTO.html

http://www.billauer.co.il/selinux-policy-module-howto.html
0
 
savoneConnect With a Mentor Commented:
There is no way to quantify exactly how dangerous this is without knowing a lot of other variables.  But if you feel strongly about the security of your system you should start looking into alternative software.
0
 
Scott SilvaNetwork AdministratorCommented:
I thought this was fair to split points.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.