SELinux Alternatives
SELinux
Security Enhanced Linux (SELinux) is a role-based access control solution, developed by the US spying agency NSA and RedHad, for internal and general use.
Access can be constrained on such variables as which users and applications can access which resources. These resources may take the form of files. Standard Linux access controls, such as file modes (-rwxr-xr-x) are modifiable by the user and the applications which the user runs. Conversely, SELinux access controls are determined by a policy loaded on the system which may not be changed by careless users or misbehaving applications.
SELinux also adds finer granularity to access controls. Instead of only being able to specify who can read, write or execute a file, for example, SELinux lets you specify who can unlink, append only, move a file and so on. SELinux allows you to specify access to many resources other than files as well, such as network resources and interprocess communication (IPC).
Its code has never been fully audited by any US-independent auditor.
Best SELinux Alternatives
Looking for some programs similar to SELinux? Here are the top-recommended programs we found. Let's take a look if there's anything out there that helps you on whatever platform you're using.
AppArmor
FreeOpen SourceLinuxA Mandatory Access Control (MAC) system which is a kernel (LSM) enhancement to confine programs to a limited set of resources.
Features:
- Access Control
- Security focused
grsecurity
CommercialLinuxRole-based access control system, least privilege memory protection, chroot restriction, etc.
SELinux Reviews
Add your reviews & share your experience when using SELinux to the world. Your opinion will be useful to others who are looking for the best SELinux alternatives.
Table of Contents