SELinuxin

SELinuxin is a term sometimes used to denote the Security-Enhanced Linux (SELinux) security framework and its integration in Linux systems. SELinux provides a mandatory access control mechanism intended to confine processes and limit the damage from security vulnerabilities.

At its core, SELinux is implemented as a security module in the Linux kernel. Policies written in

SELinux supports several modes: enforcing, permissive, and disabled. A policy can be targeted, offering strong protection

Management tasks include checking status with sestatus, switching modes with setenforce, and administering policy modules with

Deployment considerations include that many major distributions ship with SELinux support and labeled policies. SELinux can

See also: Security-Enhanced Linux; Linux Security Modules; Mandatory access control.