This website is deprecated, and remains online only for historic access to old issues and docs for historic versions of Virtualmin. It has been unmaintained for several years, and should not be relied on for up-to-date information. Please visit www.virtualmin.com instead.

SELinux is fully disabled.

3 posts / 0 new

Topic locked

Last post

#1 Sat, 10/10/2009 - 23:27

Anonymous

SELinux is fully disabled.

This file controls the state of SELinux on the system. SELINUX=disabled enforcing - SELinux security policy is enforced. permissive - SELinux prints warnings instead of enforcing. disabled - SELinux is fully disabled.

SELINUX=disabled

SELINUXTYPE= type of policy in use. Possible values are: targeted - Only targeted network daemons are protected. strict - Full SELinux protection.

SELINUXTYPE=targeted

SETLOCALDEFS= Check local definition changes

SETLOCALDEFS=0

Doesn't this make my server easier to attack ?

You install and look after a lot of servers, do most of them have SELinux enabled or disabled?

If I enable SELinux is it likely to mess things up ?

#2 Fri, 10/16/2009 - 01:24

Davvit

Is this something that can be set in Webmin ?

Can you let me know what you think about SELinux (i.i the questions I asked last week)

Many thanks David.

#3 Fri, 10/16/2009 - 10:25

andreychek

SELinux is a tool that can improve security, sure. It also has the ability to interfere with shared hosting setups in some cases, so it's often left disabled.

If you choose to enable it, you'd want to spend some time testing your various apps to make sure everything is working as expected.

-Eric

Topic locked