SELinux for Mere Mortals (or, "Don't Turn It Off")

While Security-Enhanced Linux (SELinux) is an incredibly powerful tool for securing Linux servers, it has historically had a reputation for being difficult to configure, and as a result many system administrators would simply turn it off. Fortunately, the incredible amount of work done by the SELinux community in recent years has made SELinux much more system administrator-friendly. In this session, attendees will learn the basics of SELinux, which include configuring, analyzing, and correcting SELinux errors, as well writing basic policies to enable non-SELinux aware applications to work on SELinux protected systems. Real-world examples will be used to better demonstrate how to use SELinux.