Speakers | |
---|---|
Ralph Angenendt | |
Schedule | |
Day | Sunday |
Room | H.2213 |
Start time | 13:00 |
End time | 14:00 |
Duration | 01:00 |
Info | |
Event type | Podium |
Track | Fedora + CentOS |
Language | English |
drwxr-x--x is still the normal means of security under linux, giving access rights to data to users, groups and anyone else. This method isn't very flexible, so access rights are either given for larger groups of people or the administrator is tearing out his hair because he is lost in a maze of user, file and directory structures, which make working more than complex, but don't make the system more secure. Enter SELinux, a security infrastructure which is integrated into the kernel and promises to make securing your system more flexible.
SELinux is a security framework which is included in the kernel of the Linux operating system. Under SELinux files don't only have the normal access rights or ACLs, but also have a context. You as a user or a program have to be able to use that context to get access - even if normal access rights would allow you to change the file. This talk gives a short overview of SELinux and talks about the tools in CentOS 5 (and Fedora) which enable you to change the behaviour of SELinux. In the second part we will secure a small daemon with the tools we learned about in part 1.
Other events at the same time:
When | Event | Track | Where |
---|---|---|---|
12:00-14:00 | KeySigning Party | Lightning Talks | Ferrer |
12:45-13:30 | openSUSE on Netbooks | openSUSE | H.2214 |
12:45-13:15 | JSR292 - Supporting Dynamically Typed Languages | Free Java | AW1.125 |
13:00-14:30 | LPI exam session 4 | LPI Certification | Guillissen |
13:00-13:45 | CMake - what can it do for your project | CrossDesktop | H.1301 |
13:00-14:00 | Release management in Debian - can we do better? | Debian | AW1.121 |
13:00-14:00 | Ada informal discussions Lunch Time | Ada | AW1.124 |
13:00-13:30 | Migration from informix to PostgreSQL at VPRO | BSD+PostgreSQL | UA2.114 |
13:00-14:00 | Importing data with job queue and import manager | Drupal | H.1302 |
13:15-14:15 | MySQL, powering and using Social Networks | MySQL | AW1.126 |
13:30-14:15 | On objects, classes, binding and scoping in Ruby | Ruby and Rails | AW1.120 |
13:30-14:00 | User Groups: Leading without being in charge | BSD+PostgreSQL | UA2.114 |
13:30-14:15 | YaST2 - Future Roadmap | openSUSE | H.2214 |
13:45-14:30 | WebKit on ebook readers | CrossDesktop | H.1301 |