update 2020: SELinux disabled per default in Debian 10

found SELinux was disabled, to enable it you need to install some packages before, after an apt update, run the command:

apt install selinux-basics selinux-policy-default

src: https://linuxhint.com/selinux_debian_10/

The “convenience vs surveillance” goes into another round of extremes.

“I’m amazed, so some open source dudes compiled into the kernal…a security package developed by the NSA! I mean lol? Let’s get the fox to guard the chicken coup!”

Source: http://forum.prisonplanet.com/index.php?topic=43629.80

# newer 
hostnamectl; # what os is used?
  Operating System: Debian GNU/Linux 10 (buster)
            Kernel: Linux 4.19.0-9-amd64
      Architecture: x86-64

dpkg -l |grep SELinux; # is SELinux installed?
ii  libselinux1:amd64             2.8-1+b1                     amd64        SELinux runtime shared libraries
ii  libsemanage-common            2.8-2                        all          Common files for SELinux policy management libraries
ii  libsemanage1:amd64            2.8-2                        amd64        SELinux policy management library
ii  libsepol1:amd64               2.8-1                        amd64        SELinux library for manipulating binary security policies

# older Debian Linux 2.6.32-5-amd64 #1 SMP Fri May 10 08:43:19 UTC 2013 x86_64 GNU/Linux

dpkg -l |grep SELinux; # is SELinux installed?
 ii libselinux1 2.0.96-1 SELinux runtime shared libraries
 ii libsepol1 2.0.41-1 SELinux library for manipulating binary security policies

uname -a
Linux ubuntuServer 3.8.0-29-generic #42~precise1-Ubuntu SMP Wed Aug 14 16:19:23 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
root@ubuntuServer:/# dpkg -l |grep SELinux
ii  libselinux1                      2.1.0-4.1ubuntu1                  SELinux runtime shared libraries

The National Security Agency or NSA is now in the public eye for some nefarious surveillance, but Linux users should know that the agency also had an active role the Linux kernel development, with the addition of SELinux (Security-Enhanced Linux).

According to their official website, “SELinux is an implementation of mandatory access controls (MAC) on Linux”.

Mandatory access controls allow an administrator of a system to define how applications and users can access different resources such as files, devices, networks and inter-process communication.”

It’s essentially a tool that allows for the integration of access control security policies and it works similarly to a firewall, at least from a concept point-of-view.

NSA (National Security Agency) is the primary developer of SELinux (although there are other parties involved, including Red Hat) and the project was merged into the Linux kernel back in 2003.

SELinux has been enabled in Android and more details about this particular project can be found in one the official website.

source: http://news.softpedia.com/news/NSA-Has-Legitimate-Code-Running-in-Linux-Kernel-and-Android-361289.shtml

liked this article?

  • only together we can create a truly free world
  • plz support dwaves to keep it up & running!
  • (yes the info on the internet is (mostly) free but beer is still not free (still have to work on that))
  • really really hate advertisement
  • contribute: whenever a solution was found, blog about it for others to find!
  • talk about, recommend & link to this blog and articles
  • thanks to all who contribute!
admin