If you want an effective means of securing your Linux system (and who doesn't?), this book provides the means.
This Notebook has been assembled from information that is available within the public domain and where necessary, updated to reflect the Linux Security Module (LSM) and Security-Enhanced Linux (SELinux) services as built into the Fedora 10 release of GNU/Linux.
The 4th Edition of the SELinux Notebook should help with explaining:
- SELinux and its purpose in life.
- The LSM / SELinux architecture, its supporting services and how they are implemented within GNU / Linux.
- SELinux Networking, Virtual Machine, X-Windows, PostgreSQL and Apache/SELinux-Plus SELinux-aware capabilities.
- The core SELinux kernel policy language.
- An introduction to the new Common Intermediate Language (CIL) implementation.
- The core SELinux policy management tools with examples of usage.
- The Reference Policy architecture, its supporting services and how it is implemented.
- The integration of SELinux within Android - SE for Android.
However, this Notebook will not explain how the SELinux policies are managed within each GNU/Linux distribution as they have their own supporting information (e.g. Fedora has the Fedora 10 SELinux User Guide and Gentoo has the Gentoo SELinux Handbook).
The intensive search for a more secure operating system has often left everyday, production computers far behind their experimental, research cousins. Now SELinux (Security Enhanced Linux) dramatically changes this. This best-known and most respected security-related extension to Linux embodies the key advances of the security field. Better yet, SELinux is available in widespread and popular distributions of the Linux operating system - including for Debian, Fedora, Gentoo, Red Hat Enterprise Linux, and SUSE - all of it free and open source.