"Your Container Is Not a Sandbox" never mentions SELinux. Not once. Containers *do* contain — I run OpenClaw --read-only with SELinux enforcing and sleep fine. https://emirb.github.io/blog/microvm-2026/ #containers #SELinux
At which point does security infrastructure become complex enough to be a security risk by itself?
Read this function and tell me you understood it at first glance.
elixir.bootlin.com/linux/v6.19.11/source/se...
#Linux #SELinux
Stop running setenforce 0 and pretending SELinux doesn't exist.
I wrote a practical guide to actually working with SELinux on Fedora and RHEL: Contexts, booleans, troubleshooting denials, container volume labels, and the commands you'll actually use.
No policy theory rabbit holes. Just the […]
SELinux domesticum delendum est.
#SELinux #LinuxDesktop #LinuxDistribution #openSUSE
[Перевод] SELinux: интеграция с Zabbix и другими инструментами Всем привет! Мы делаем проекты по Zabbix, накопили боль...
#zabbix #linux #selinux #gals #software
Origin | Interest | Match
AlmaLinux 9.7 chega com melhorias de desempenho e segurança reforçada
#criptografia #linux #segurança #SELinux
Alerta: Molduras digitais Uhale com Android estão a descarregar malware ao iniciar
#AES #amazon #android #apple #base #botnet #chave #criptografia #cve #dex #google #grave #malware #marcas #riscos #root #segurança #SELinux #sem #servidor #vulnerabilidades
Leap 16 kicks off a new era for #openSUSE. #2038-safe, #SELinux by default, improved migration tools, and parallel package downloads. Read the full announcement: news.opensuse.org/2025/10/01/n... #Linux #Endof10
Seriously, #SELinux. I think that on most Linux desktops and even home servers, it's complete security theater and needs to be taken out behind the shed and disabled by default.
Ridiculous.
Did users actually ask for this? I guarantee you they did not.
I set up #garage as an S3 endpoint locally so I can have the same backup target mode in my internal network.
Let's just say that, at least with the default settings, that's not friendly to a USB HDD.
I replaced it with a CIFS share which was flawless and much faster.
Except for the fuckery […]
Partial screenshot from /etc/selinux/config showing "SELinux can take one of ... # enforcing # permissive # disabled"
The three genders
#SELinux
openSUSE Leap 16 já chegou com novo instalador e o adeus a um bug histórico
#AppArmor #cpu #hardware #iso #linux #monitor #mundo #openSUSE #processadores #segurança #SELinux #software #steam #velocidade #web #x86 #y2k
openSUSE Leap 16 is out! 🚀 Featuring the new Agama installer, Y2K38 fixes, updated hardware requirements, SELinux enabled by default, and faster software installs.
#openSUSE #Linux #OpenSource #TechNews #SELinux
alternativestack.com/news/opensus...
Ivanti Unveils Version 25.X of Connect Secure, Setting New Standards for VPN Security and Performance #USA #Salt_Lake_City #Ivanti #Connect_Secure #SELinux
Half day I was trying to find out why ROCm is not working in my #distrobox #ubuntu container, all the time complaining about wrong permissions to /dev/kfd. Have been trying all usual stuff. And the I realised it is #selinux who is screwing me. Did not realised when I changed underlying distro to […]
AlmaLinux 10 vai ativar o repositório CRB por defeito para acabar com dores de cabeça
#blog #linux #metadados #SELinux #software
AlmaLinux 10 vai ativar o repositório CRB por defeito para acabar com dores de cabeça Os utilizadores da distribuição AlmaLinux que costumam recorrer ao popular repositório EPEL (Extra Package...
#Noticias #de #Software #blog #linux #metadados #SELinux #software
Origin | Interest | Match
Q: So, as a sysadmin, what is my largest Red Flag on anything?
A: Disable SELinux in the setup instructions.
And I am pointed at this today:
www.ibm.com/docs/en/ahts...
#fail #Linux #IBM #selinux
From #Kubernetes and #SELinux workshops to #GNUHealth in public #healthcare, all while celebrating 20 years of the #project, openSUSE.Asia Summit 2025 was a journey of wonder! news.opensuse.org/2025/09/03/a...
Запуск бинарных файлов из data/data на Android 10+ (Обход SELinux) Всем привет! Как многие знают, с Android 10 (Target sdk 29) google ввел...
#selinux #termux
Origin | Interest | Match
I have *sincere* doubts whether SELinux truly improves security on a Linux desktop, or whether it is just a royal PITA.
Because clearly, an openvpn script wanting to drop in a dnsmasq config files & reload a systemd service should be this fun.
Just how many people do y'all think don't just […]
For the average Linux user risk from 99% of threat vectors can be decreased by simply running #OpenSnitch and have it request network access for every new process on the system. And it doesn't require a lot of work and thought (e.g. #SELinux) apart from confirming popups every now and then.
