anavem.
Back to Glossary
S

SELinux (Security-Enhanced Linux)

SELinux is a Linux kernel security module providing mandatory access controls beyond traditional Unix permissions.

What is SELinux?

SELinux is a Linux kernel security module that provides a mechanism for supporting access control security policies, including mandatory access controls (MAC).

SELinux modes

Enforcing (policies enforced), Permissive (logs but doesn't enforce), Disabled.

Common misconceptions

  • "Just disable SELinux" — Weakens security significantly
  • "SELinux is too complex" — Learning curve but valuable
  • "SELinux replaces permissions" — Additional layer