[RSS] Home » Debian Jessie and SELinux

Let op: Tweakers stopt per 2023 met Tweakblogs. In dit artikel leggen we uit waarom we hiervoor hebben gekozen.

Debian Jessie and SELinux en

By Anoniem: 26306 on zondag 26 april 2015 13:03 - Comments (6)
Category: Linux, Views: 6.732

So. Let's see where we are now with Debian and SELinux.

I'm installing the bare minimum of software and imagine I'm going to install a secure server. I'm a Linux professional and know very well what I'm doing, so I always pick the Expert Install option and basically configure as little as possible, so no non-free or contrib packages.

After the installation, the system boots and I disable installing optional or suggested packages, a feature which still cannot be configured from the installer. I install my favourite text editor and the selinux-basics package. It is suggested I also install a whole bunch of other crap, which I respectfully refuse. I'll pick what I need, later.

Well, I want some policy, of course, so selinux-policy-default seems reasonable. It was recommended when installing selinux-basics. Therefore it's very interesting that the package is simply not available. Well, this adventure ended quickly.

So, Debian, is this what you call SELinux support?

Comments

By Tweakers user iamzero456, zondag 26 april 2015 14:00

What is your goal with your blog? Write off frustration? ;)

I personally would find it interesting to read about minimum Linux installations and basic server needs (example packages). Perhaps you could even write a simple tutorial or anything like that.

By Tweakers user johnkeates, zondag 26 april 2015 15:12

Stop using end-user tools for 'professional' setups. Use preseeding and configuration management like SaltStack. Or go with FAI.

Using the wrong tool doesn't make the tool broken.

By Tweakers user Zenix, maandag 27 april 2015 19:32

I would rather use AppArmor.

By Tweakers user WhatsappHack, maandag 27 april 2015 21:59

I'm a Linux professional and know very well what I'm doing, so I always pick the Expert Install option and basically configure as little as possible, so no non-free or contrib packages.
Lol. Sorry, but that made me chuckle.

By Tweakers user goarilla, maandag 27 april 2015 23:25

[qoute]I'm a Linux professional and know very well what I'm doing, so I always pick the Expert Install option and basically configure as little as possible, so no non-free or contrib packages.[/quote]That's hubris. You need to be a Debian install expert to be able to rightfully pick expert install. Every linux installs differently (anaconda != DebianInstaller != Slackware's setup).

PS: Why the English ?

By Tweakers user Xantios, woensdag 29 april 2015 12:50

goarilla wrote on Monday 27 April 2015 @ 23:25:
[qoute]I'm a Linux professional and know very well what I'm doing, so I always pick the Expert Install option and basically configure as little as possible, so no non-free or contrib packages.[/quote]That's hubris. You need to be a Debian install expert to be able to rightfully pick expert install. Every linux installs differently (anaconda != DebianInstaller != Slackware's setup).

PS: Why the English ?
Ondanks de kapotte quote sluit ik me volledig bij je aan
Debian is een toffe distro, maar het is soms een beetje een vreemd eendje.

Persoonlijk ben ik overigens best enthousiast over deze nieuwe versie

Comments are closed

Inloggen

Login met je Tweakers profiel.

Recente posts

Categorieën

Archieven

About