Linux Advanced

What is SELinux?

Security-Enhanced Linux — a mandatory access control system that confines programs to minimum required privileges beyond standard file permissions.

SELinux, developed by the NSA, adds a layer of security beyond traditional Unix permissions. It assigns security labels (contexts) to files, processes, and ports, then enforces policies about what each labeled process can access. Even if a process runs as root, SELinux can restrict its capabilities. Three modes exist: Enforcing (blocks and logs violations), Permissive (logs but allows violations), and Disabled. Common commands include getenforce, setenforce, restorecon, and chcon. While SELinux has a steep learning curve, it significantly hardens Linux systems and is enabled by default on RHEL/CentOS/Fedora.

Learn More About This Topic

SELinux & AppArmor Guide

Directly covers this topic

Linux Permissions

Closely related

RHCSA EX200 Bonus Practice Book

Closely related

Related Terms

The primary command for managing systemd services, including starting, stopping, enabling, and checking service status.

ACL (Access Control List)

An extension to standard Linux file permissions that allows setting fine-grained access rights for specific users and groups beyond owner/group/other.

A dynamic firewall management tool for Linux that provides a D-Bus interface for managing firewall rules with zones.

A command to change the owner and group of files and directories in Linux.

A Linux security module that restricts program capabilities using per-application profiles, simpler to configure than SELinux.

A powerful command for searching files and directories based on various criteria like name, size, type, and modification time.

View All Linux Terms →