William Hooper wrote: >> While I'm not hostile to SELinux, >> I'm also not convinced it actually gives any protection in the real >> world. >> I've never seen anyone say, "Thank God I was running SELinux, >> or I would have been in a mess". > > Mambo Exploit Blocked by SELinux > http://interactive.linuxjournal.com/article/9176 OK, that is getting nearer; but as far as I can see, the guy in this case was running some kind of web development server (Mambo) on his machine, and a hacker had targeted this particular server. I wouldn't be doing anything so esoteric, so still wouldn't feel in great danger. Also, I was struck by the amount of trouble the man had to go to to work out what had happened. I wouldn't be up to that, so SELinux in this case would be wasted on me.