What Is Selinux

The topic of this article is the SELinux configuration on Rhel 5. Rhel also provides http://www.aliyun.com/zixun/aggregation/18378.html "> Graphical user Interface (GUI) and command line two ways to configure SELinux. To demonstrate SELinux simplicity, this article uses the Rhel GUI to enable SELinux. To enable SELinux from the Rhel GUI, click the system in turn ...

Editor's note: When it comes to the safety of containers, most people say it's not safe enough to give up the high performance and convenience it brings. The author of this article thinks that Docker has already provided a safe mode, and can be used with all Linux security schemes such as SELinux, as, but many people do not use it well. By comparing bare-metal, VMS and container to buildings, apartments and private rooms, the authors illustrate the problem. Of course, from another perspective, the author only considers the problem of single tenant, the situation of the multi-tenant, C ...

We've all seen reports of hacking in the systems of some big companies, generally speaking, the hacker starts from obtains the root access right, once obtains the root access, may say your any file, as long as the intruder wants, they all can take away, this raises two questions: · Should the data path be more secure? · What should we do if the data path should be more secure? Should the data path be more secure? Seems to be a little crazy, people told me that there is no storage security requirements, the need for the network ...

Using Linux to do PXE installation system appears pxe-e32:tftp open timeout find PXE boot chip error code table, is that TFTP did not run PXE-E32:TFTP Open timeout tftp "Open" request did not answer, 　　Verify that the TFTP service is running. Restart the XINETD service, and determine whether the port is listening, or the problem [Root@localhos ...

Now let's build a user domain of our own and call it second_t. We will also build a new role called Second_r. To create a second_r role first in the previous section (just assigning a user_r role and not actually creating such a user), do not run the make command in section 5.2. After you have edited/etc/selinux/user, come back here and continue to the next section, about editing user domain files ...

1. The foreword builds a distributed Hadoop environment in 3 system centos6.5 Linux virtual machines, the Hadoop version is 2.6, and the node IP is 192.168.17.133 192.168.17.134 192.168.17.135 2 respectively. Configure the Hosts file to configure Hosts files on 3 nodes, as follows: 192.168.17.133 master 192.168.17.134 slave1 ...

Now let's do something interesting! We will create an SE Linux user and assign him a role and then set the default security context for the user. In the old SE Linux environment, the encapsulation program was set up with VIPW (SVIPW), for example, Useradd (Suseradd), passwd (SPASSWD), CHFN (SCHFN), and so on, in the new SE linux environment, These programs have other names. 5.1 Establish a new ...

Editor's note: The last period of time reproduced in the "5 minutes to understand docker! "Very popular, a short 1500 words, let everyone quickly understand the Docker." Today, I saw the author make a new novel, and immediately turned over. The reason to call this code reading as a fantasy trip is because the author Liu Mengxin (@oilbeater) in the process of reading Docker source, found a few interesting things: from the code point of view Docker did not start a new development mechanism, but the existing tested isolation security mechanism to use the full use, Including Cgroups,c ...

Projects in the private cloud using CDH (Cloudera Distribution Including Apache Hadoop) Hadoop cluster for big data computing. As a big fan of Microsoft, deploying CDH into Windows Azure VMs is my inevitable choice. Because there are multiple open source services in the CDH, there are many ports that virtual machines need to open. Windows Azure virtual machine's network is securely isolated, so in Windows Azu ...

The first beta version of Kororaa 16 (code-named CHUM) has been released and available for download, including 32-bit and 64-bit versions of KDE and GNOME. This new release includes significant updates for most packages and cores, Office and desktop (KDE 4.7 and Gnome 3.2). Upgrade currently, 15 of the existing version of the user upgrade to 16 version needs to wait until the final release of the version, the current version is still in beta phase. For users who want to test this version, it is recommended that you perform a new installation or use a virtual machine. It uses a live ...