Linux Advanced

What is SELinux?

Security-Enhanced Linux — a mandatory access control system that confines programs to minimum required privileges beyond standard file permissions.

SELinux, developed by the NSA, adds a layer of security beyond traditional Unix permissions. It assigns security labels (contexts) to files, processes, and ports, then enforces policies about what each labeled process can access. Even if a process runs as root, SELinux can restrict its capabilities. Three modes exist: Enforcing (blocks and logs violations), Permissive (logs but allows violations), and Disabled. Common commands include getenforce, setenforce, restorecon, and chcon. While SELinux has a steep learning curve, it significantly hardens Linux systems and is enabled by default on RHEL/CentOS/Fedora.

Learn More About This Topic

SELinux & AppArmor Guide

Directly covers this topic

Linux Permissions

Closely related

RHCSA EX200 Bonus Practice Book

Closely related

Related Terms

A command-line utility for downloading files from the web, supporting HTTP, HTTPS, and FTP protocols.

A dynamic firewall management tool for Linux that provides a D-Bus interface for managing firewall rules with zones.

LVM (Logical Volume Manager)

A storage management framework that provides flexible disk management through abstract layers of physical and logical volumes.

A command that builds and executes commands from standard input, useful for processing lists of items.

A software-based network switch in the Linux kernel that connects multiple network interfaces at Layer 2, enabling VM and container networking.

Linux Kernel Module

A piece of code that can be loaded into the kernel at runtime to extend functionality without rebooting, such as device drivers and filesystems.

View All Linux Terms →