Myth or reality: SELinux can confine the root user?

↧

Answer by WhiteWinterWolf for Myth or reality: SELinux can confine the root...

August 20, 2015, 2:38 am

Reality: yes, SELinux can confine the root user. This is possible because SELinux do not actually care about the current Unix user: all it sees is a supplementary metadata called the context (which...

View Article

Answer by Otheus for Myth or reality: SELinux can confine the root user?

April 15, 2015, 6:25 am

Is it possible to harden a Linux box (possibly with SELinux), such that even the root user cannot do specific malicious activities on it? This may sound cheap, but it's easy: change the uid of the...

View Article

Answer by strugee for Myth or reality: SELinux can confine the root user?

December 29, 2013, 10:16 pm

Yes, it's possible. But not very useful. You could theoretically disallow the root user from running binaries that could be used for malicious purposes, enforcing policies via something like SELinux....

View Article

Myth or reality: SELinux can confine the root user?

September 4, 2015, 4:56 pm

I read or heard somewhere (maybe in LinuxCBT's SELinux course; but I'm not sure) that there are online Linux servers, for which the password of the root user is also given. The Linux server is...

View Article

More Pages to Explore .....