See also: Linux | Linux Distributions
Acronym: Security-Enhanced Linux
Home Page: http://www.nsa.gov/selinux/
A Linux distribution providing improved security features in Linux that would prevent malicious user, or crackers, from harming a system even if it was compromised at the root level, or a computer setting that gives the user full control over their computers. Crackers seek elevation to this status in order to gain full control over systems. It was a rare, publicly-viewable activity by the US National Security Agency, a group so secretive that NSA is joked to stand for “No Such Agency.”
Despite positive community feedback and some genuine security improvement, it is believed lobbying pressure from Microsoft hurt (but did not stop) development. The source code still available, benefits from the “SE” design surfaced in security-consious Linux Distributions and in other software. It is curently included in the 2.6 kernel, but is disabled by default. With it, Linux took a step closer to the high-end *nix security usually associated with OpenBSD.
Quoting Linux.com:
“SELinux is an extension to the Linux kernel that enforces mandatory access control. With an SELinux-enabled Linux distribution, you can define explicit rules about which subjects (users or programs) can access which objects (files or devices). You can think of it as an internal firewall, which gives you the ability to separate programs, thereby ensuring a high level of security within the operating system.” source (http://www.linux.com/article.pl?sid=05/09/23/1440254)
Related
- NSA Releases Updated Secure Linux (http://slashdot.org/articles/04/02/25/0027234.shtml)
- Getting Started Guide (http://sourceforge.net/docman/display-doc.php?docid=15285&group-id=21266)
- Google – SE Linux (http://www.google.com/search?q=SE+Linux)
News
- Story from Linux-Mag (http://www.linux-mag.com/2001-09/se-linux-01.html)
- NSA Releases High Security Version Of Linux (http://slashdot.org/articles/00/12/22/0157229.shtml)
- NSA Linux In Depth (http://slashdot.org/articles/01/03/09/1810249.shtml)
TakeDown.NET -> “SE-Linux”