CentOS reference guide
May 19th, 2008 Posted in LinuxSElinux is a phenomenal way to protect your systems, and very few people disagree with this. The biggest complaint I hear is that it’s not user friendly. Most people seem to treat it like a binary system, and either leave it on, or turn it off. There’s very little documentation about the ins and the outs of selinux contexts and the targeted rulesets which ship with RHEL and CentOS. After some discussions with Ralph this morning on IRC, he’s graciously put together a list of the base contexts which ship in the targeted rule, and a brief explanation of what they do. If you want to take a few minutes to look through the granular protection possible through selinux, have a quick read of the new documentation at http://wiki.centos.org/TipsAndTricks/SelinuxBooleans
If you’re on IRC, feel free to stop by freenode’s #centos channel and thank Range for putting this list together.