Turning off SELINUX
Stephen Gallagher
sgallagh at redhat.com
Thu Sep 5 21:03:07 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 09/05/2013 04:41 PM, Javier Perez wrote:
> After reading this, I am turning off SELINUX
>
> http://www.theguardian.com/world/2013/sep/05/nsa-gchq-encryption-codes-security
>
>
>
> Until I hear of a thorough code review by a non-USA team of this
> code, I do not feel safe using it, privacy wise.
>
> It's a pity because SELINUX is a good idea.
>
SELinux is a *great* idea. You know what's the best part? It has
nothing at all to do with encryption. This article is completely
irrelevant to the SELinux discussion.
Now, it *could* be relevant to a discussion about openssl, gnutls and
Mozilla NSS, but unless you haven't been paying attention, you'll
notice that all of those projects (and SELinux) have a very heavy
non-US contributor community.
This is pretty much a perfect example of the value of open-source: no
one is going to be able to sneak something into the upstream code.
Please stop spreading FUD and *STOP TURNING OFF SELINUX*.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlIo8YsACgkQeiVVYja6o6NzxgCgnTMTOZc2Mwu77QCThs3fqy2F
C6UAoJlhW6h6yn9H2171fkt5ALQghw+U
=+TaE
-----END PGP SIGNATURE-----
More information about the users
mailing list