SELinux for Mere Mortals
While Security-Enhanced Linux (SELinux) is an incredibly powerful tool for securing Linux servers, it has a reputation for being difficult to configure. As a result, many system administrators would simply turn it off. Fortunately, the incredible amount of work completed by the SELinux community in recent years has made SELinux much more system administrator-friendly.In this session, attendees will learn the basics of SELinux, which include configuring, analyzing, and correcting SELinux errors, as well as writing basic policies to enable non-SELinux-aware applications to work on SELinux-protected systems. Real-world examples will be used to better demonstrate how to use SELinux. If attendees wish to follow along on their own system, a laptop (or a vm on a laptop) running a RHEL6 (or derivative) OS would be appropriate (Lab exercises are non destructive to the host system). Depending on setup and class time, there may also be a shared lab environment. Registrants are encouraged to bring a laptop with wireless capabilities and an ssh client.
My name is Jim Wildman and I have been hanging around Unix and Linux since 1985. I’ve made a living doing SunOS, Solaris, HP-UX, Linux and general technical consulting in manufacturing, retail, healthcare, finance and online environments. I’ve worked for some of the largest companies in several of those fields as well as mom and pop shops. I was an active participant in the Central Ohio Linux Users Group for many years and presented at OLF in 2009. After a brief stint in the oil and gas trading arena in Houston, I am now an Account Solutions Architect for Red Hat covering south Florida strategic accounts.
Jim Wildman, Red Hat