Re: How NSA access was built into Windows

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Thu, 2007-01-18 at 10:15 -0500, Lyvim Xaphir wrote:
> The story is more complex than that of course, but the experience was
> very instructional.  Todd Zullinger was correct in his suggestion that a
> distro switch would be the most efficient way to get rid of selinux.
> 

Not at all. Anaconda explicitly gives you the option of installing
SELinux in enforcing (blocks unauthorized access attempts), passive
(makes an AVC log entry of, but does not block unauthorized attempts),
or entirely not at all (reverting to the standard user/group/other
discretionary access controls).

Also, you can boot with 'selinux=0' to disable SELinux for that system
session; or (if the system is already running), run the following
commands as root to make SELinux switch to passive mode or be disabled
entirely (respectively):

# echo 0 > /selinux/enforce
# echo 1 > /selinux/disable

SELinux, while an excellent technology and highly-recommended for its
security benefits, is not a mandatory aspect of a Fedora installation.
If you do not feel it is needed, then you are free to disable, remove,
or prevent it from being installed entirely. 
-- 
Peter Gordon (codergeek42) / FSF Associate Member #5015
GnuPG Public Key ID: 0xFFC19479 / Fingerprint:
  DD68 A414 56BD 6368 D957 9666 4268 CB7A FFC1 9479
Blog: http://thecodergeek.com/blog/ 
About: http://fedoraproject.org/wiki/PeterGordon

Attachment: signature.asc
Description: This is a digitally signed message part


[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux