Last week colleague of mine asked, how to prove that some operation is allowed in installed SELinux policy? This could be useful when you’re troubleshooting
Category: Uncategorized
Distinguish sysadm and secadm roles
Today, I would like to focus on more advance feature in SELinux technology which are confined users. I wrote several posts where I described how
Use udica to build SELinux policy for containers
Last week article about the udica was published on fedoramagazine.Go and see how easily SELinux policy could be generated for containers! We also collects use
Red Hat Brno Open House 2019
Hi All, We had Open House Brno 2019 and our team Platform Security had talk on this event. Slides are available here, demos are here.
Using rpm macros in product SELinux subpackages
Some time ago, I published a post about shipping custom SELinux modules together with product as rpm subpackage. One of the steps in shipping custom
Shipping custom module using SELinux priorities
Hello everyone! Some time ago I introduced first part of shipping own custom module with rpm package of your application. This solution allows you to
How to modify SELinux module from distro policy?
Hi! Today, I’ll show you how to modify SELinux module from distro policy without rebuilding whole selinux-policy rpm package. This can be useful during testing
See you on Flock2016!
Hello SELinux enthusiasts! On Flock conference, me and Mirek Grepl will talk about shipping own SELinux modules for your service and show you SELinux power
Trouble with custom SELinux modules
Hello Everyone! I’m here with second part of series on how to create a custom SELinux policy rpm package. In this part I’ll show disadvantages
My first conference as speaker!
Hi, I’m glad to say that I had my first talk on openalt conference! Attaching materials: link. (available just in slovak) Video : link (available