SELinux For Dummies
SELinux For Dummies - LinuxFest Northwest 2013
Presentation by Gary Smith, Information System Security Officer, Molecular Science Computing, Pacific Northwest National Laboratory, Richland, WA.
In the beginning, the Unix file system's Discretionary Access Control (DAC) security model was simple and elegant. For decades, it was good enough for most situations but as as increasing security demands were put on DAC, it began to run out of steam.
Security Enhanced Linux (SELinux) was created by the National Security Agency (NSA) to be the most mature and complete response to the need for more secure Linux systems. Even though many distributions come with SELinux enabled by default, many system administrators disable SELinux out of fear their applications won't run. This is no longer acceptable.
Today everything from cell phones to super computers need high quality security. Imagine being able to sandbox applications such as your web browser, email client, or even a virtual machine. The traditional Linux security make this difficult or next to impossible. SELinux, however, makes this fine grain security available to everyone.
When it first arrived, SELinux seemed harder to learn and more mysterious than Quantum Mechanics. As a result, system administrators feared it. It's time to lay fear aside. SELinux for Dummies will show you what SELinux is, why it's a great addition to the security arsenal, and how to maintain and troubleshoot it.
Видео SELinux For Dummies канала Jay Paul
Presentation by Gary Smith, Information System Security Officer, Molecular Science Computing, Pacific Northwest National Laboratory, Richland, WA.
In the beginning, the Unix file system's Discretionary Access Control (DAC) security model was simple and elegant. For decades, it was good enough for most situations but as as increasing security demands were put on DAC, it began to run out of steam.
Security Enhanced Linux (SELinux) was created by the National Security Agency (NSA) to be the most mature and complete response to the need for more secure Linux systems. Even though many distributions come with SELinux enabled by default, many system administrators disable SELinux out of fear their applications won't run. This is no longer acceptable.
Today everything from cell phones to super computers need high quality security. Imagine being able to sandbox applications such as your web browser, email client, or even a virtual machine. The traditional Linux security make this difficult or next to impossible. SELinux, however, makes this fine grain security available to everyone.
When it first arrived, SELinux seemed harder to learn and more mysterious than Quantum Mechanics. As a result, system administrators feared it. It's time to lay fear aside. SELinux for Dummies will show you what SELinux is, why it's a great addition to the security arsenal, and how to maintain and troubleshoot it.
Видео SELinux For Dummies канала Jay Paul
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Linux File System Forensics - Gary Smith from Pacific Northwest National Laboratory
Linux Server Hardening Tips and Techniques
Overview and Recent Developments: SELinux - Paul Moore, Cisco
Computer Intrusion Detection
IPTables Tips and Tricks: More Than Just ACCEPT or DROP
Digital Forensics and Linux
Open Source Vs. Network Attackers
Security and Privacy on the Web (Linuxfest Northwest 2016)
Peeling Back the Layers of the Network with Security Onion
Why Bitcoin Wins: Decentralized Technology and the Coming Global Revolution
Log Analysis with the ELK stack (Elasticsearch, Logstash, Kibana)
Steganography Hiding In Plain Sight - Presented by: Gary Smith
An Introduction to Incident Response - by Gary Smith, Pacific Northwest National Laboratory
Whatcom Association of Celestial Observers (W.A.C.O.)
IPTables - Blacklisting IP's and Ports - Stop the Badguys
Polyverse Linux Security - Stop Zero-Day attacks exploiting memory vulnerabilities
The Five Golden Principles of Security
Jupiter Broadcasting Setup at LinuxFest Northwest 2011
SELinux - Learn SELinux with Practical
FreeBSD FreeNAS