And if you have a machine actually plugged into the internet,
handling any untrusted content or with potentialy buggy apps (which
is just about anything that opens an image for example) then its
kind of useful.
heh. I guess it's even more useful if I am using the adobe 64-bit
flash plugin with a known exploit incident.
An awful lot of attacks simply don't work because of SELinux.
But
it's your system, one of the things about Free Software is you
control the tradeoffs on your machine not some vendor by diktat.
Myself - I'm prepared to fiddle now and then with SELinux settings
on my box so that its much harder to steal all my email, run off
with my credit card data or just be a nuisance.
Please give me an attack scenario where all my email get stolen.