Red Hat Enterprise SELinux Policy AdministrationVibrant e-Technologies Ltd.
Price on request
Red Hat Enterprise Linux is SELinux (Security
Enhanced Linux), a powerful, kernel-level security layer that provides fine-grained
control over what users and processes may access and execute on a system. By default,
SELinux is enabled on Red Hat Enterprise Linux systems, enforcing a set of mandatory
access controls that Red Hat calls the targeted policy. These access controls substantially
enhance the security of the network services they target, but can sometimes affect the
behavior of third-party applications and scripts that worked under previous versions of
Red Hat Enterprise Linux.
RHS429 provides a four day tutorial on SELinux and SELinux policy writing. The first
day of the course provides a introduction to SELinux, how it operates within the Red Hat
targeted policy, and the tools used to manipulate it. The class then will spend the
remaining days learning how policies are written, compiled, and debugged.
This culminates in a project in which participants will create a set of policies from scratch
for a previously unprotected service. The class will analyze the service, determining its
security needs; design and implement a set of policies; test and fix the policies; document
the service's new policies so that others can effectively administer the service.