On Thu, 2007-01-18 at 10:15 -0500, Lyvim Xaphir wrote: > The story is more complex than that of course, but the experience was > very instructional. Todd Zullinger was correct in his suggestion that a > distro switch would be the most efficient way to get rid of selinux. > Not at all. Anaconda explicitly gives you the option of installing SELinux in enforcing (blocks unauthorized access attempts), passive (makes an AVC log entry of, but does not block unauthorized attempts), or entirely not at all (reverting to the standard user/group/other discretionary access controls). Also, you can boot with 'selinux=0' to disable SELinux for that system session; or (if the system is already running), run the following commands as root to make SELinux switch to passive mode or be disabled entirely (respectively): # echo 0 > /selinux/enforce # echo 1 > /selinux/disable SELinux, while an excellent technology and highly-recommended for its security benefits, is not a mandatory aspect of a Fedora installation. If you do not feel it is needed, then you are free to disable, remove, or prevent it from being installed entirely. -- Peter Gordon (codergeek42) / FSF Associate Member #5015 GnuPG Public Key ID: 0xFFC19479 / Fingerprint: DD68 A414 56BD 6368 D957 9666 4268 CB7A FFC1 9479 Blog: http://thecodergeek.com/blog/ About: http://fedoraproject.org/wiki/PeterGordon
Attachment:
signature.asc
Description: This is a digitally signed message part
