SELinux For Dummies
SELinux For Dummies - LinuxFest Northwest 2013
Presentation by Gary Smith, Information System Security Officer, Molecular Science Computing, Pacific Northwest National Laboratory, Richland, WA.
In the beginning, the Unix file system's Discretionary Access Control (DAC) security model was simple and elegant. For decades, it was good enough for most situations but as as increasing security demands were put on DAC, it began to run out of steam.
Security Enhanced Linux (SELinux) was created by the National Security Agency (NSA) to be the most mature and complete response to the need for more secure Linux systems. Even though many distributions come with SELinux enabled by default, many system administrators disable SELinux out of fear their applications won't run. This is no longer acceptable.
Today everything from cell phones to super computers need high quality security. Imagine being able to sandbox applications such as your web browser, email client, or even a virtual machine. The traditional Linux security make this difficult or next to impossible. SELinux, however, makes this fine grain security available to everyone.
When it first arrived, SELinux seemed harder to learn and more mysterious than Quantum Mechanics. As a result, system administrators feared it. It's time to lay fear aside. SELinux for Dummies will show you what SELinux is, why it's a great addition to the security arsenal, and how to maintain and troubleshoot it.
Видео SELinux For Dummies канала Jay Paul
Presentation by Gary Smith, Information System Security Officer, Molecular Science Computing, Pacific Northwest National Laboratory, Richland, WA.
In the beginning, the Unix file system's Discretionary Access Control (DAC) security model was simple and elegant. For decades, it was good enough for most situations but as as increasing security demands were put on DAC, it began to run out of steam.
Security Enhanced Linux (SELinux) was created by the National Security Agency (NSA) to be the most mature and complete response to the need for more secure Linux systems. Even though many distributions come with SELinux enabled by default, many system administrators disable SELinux out of fear their applications won't run. This is no longer acceptable.
Today everything from cell phones to super computers need high quality security. Imagine being able to sandbox applications such as your web browser, email client, or even a virtual machine. The traditional Linux security make this difficult or next to impossible. SELinux, however, makes this fine grain security available to everyone.
When it first arrived, SELinux seemed harder to learn and more mysterious than Quantum Mechanics. As a result, system administrators feared it. It's time to lay fear aside. SELinux for Dummies will show you what SELinux is, why it's a great addition to the security arsenal, and how to maintain and troubleshoot it.
Видео SELinux For Dummies канала Jay Paul
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Linux File System Forensics - Gary Smith from Pacific Northwest National LaboratoryLinux Server Hardening Tips and TechniquesOverview and Recent Developments: SELinux - Paul Moore, CiscoComputer Intrusion DetectionIPTables Tips and Tricks: More Than Just ACCEPT or DROPDigital Forensics and LinuxOpen Source Vs. Network AttackersSecurity and Privacy on the Web (Linuxfest Northwest 2016)Peeling Back the Layers of the Network with Security OnionWhy Bitcoin Wins: Decentralized Technology and the Coming Global RevolutionLog Analysis with the ELK stack (Elasticsearch, Logstash, Kibana)Steganography Hiding In Plain Sight - Presented by: Gary SmithAn Introduction to Incident Response - by Gary Smith, Pacific Northwest National LaboratoryWhatcom Association of Celestial Observers (W.A.C.O.)IPTables - Blacklisting IP's and Ports - Stop the BadguysPolyverse Linux Security - Stop Zero-Day attacks exploiting memory vulnerabilitiesThe Five Golden Principles of SecurityJupiter Broadcasting Setup at LinuxFest Northwest 2011SELinux - Learn SELinux with PracticalFreeBSD FreeNAS