O'Rielly SELinux Book (2005)

O'Rielly SELinux Book (2005)

[Joshua Kramer]

Howdy Folks,

I have a copy of the O'Rielly SELinux book from 2005.

Many things have changed as far as the implementation and practice. 
However, is this still a good book to read if I just want to learn the 
theory in-depth?  Or have basic elements of SELinux changed since then?

Thanks!
-Josh

-- 

-----
http://www.globalherald.net/jb01
GlobalHerald.NET, the Smarter Social Network! (tm)

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Re: O'Rielly SELinux Book (2005)

[Sutton, Harry (MSE)]

[-- Attachment #1: Type: text/plain, Size: 798 bytes --]

Hi Josh,

I found that to be one of the (few) O'Reilly books that didn't really
cut it for me on its stated subject matter; my preference is
Prentice-Hall's "SELinux by Example, Using Security Enhanced Linux", by
Frank Mayer, Karl MacMillan and David Caplan (ISBN 0-13-196369-4). It's
a much clearer (and more comprehensive) treatment of the theory in depth
you're asking for.

Best regards,

    /Harry Sutton, RHCA / RHCSS
     Hewlett-Packard Company

Joshua Kramer wrote:
> Howdy Folks,
>
> I have a copy of the O'Rielly SELinux book from 2005.
>
> Many things have changed as far as the implementation and practice. 
> However, is this still a good book to read if I just want to learn the 
> theory in-depth?  Or have basic elements of SELinux changed since then?
>
> Thanks!
> -Josh
>
>   


[-- Attachment #2: S/MIME Cryptographic Signature --]
[-- Type: application/x-pkcs7-signature, Size: 6268 bytes --]

Enabling the "noatime" option on filesystems...

[Hasan Rezaul-CHR010]

Hi All,

If I enable the 'noatime' option on all my mounted filesystems, such
that anytime a given file is accessed for "READ", the last access time
is not updated: will this cause any negative impacts to SELinux ?

I am guessing it does NOT, but just wanted to make sure if there are any
impacts... Thanks,

- Rezaul.


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Re: Enabling the "noatime" option on filesystems...

[James Morris]

On Tue, 27 Jan 2009, Hasan Rezaul-CHR010 wrote:

> Hi All,
> 
> If I enable the 'noatime' option on all my mounted filesystems, such
> that anytime a given file is accessed for "READ", the last access time
> is not updated: will this cause any negative impacts to SELinux ?
> 
> I am guessing it does NOT, but just wanted to make sure if there are any
> impacts... Thanks,

It should have no effect.


-- 
James Morris
<jmorris@namei.org>

--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.

Re: O'Rielly SELinux Book (2005)

[Shaz]

[-- Attachment #1: Type: text/plain, Size: 1254 bytes --]

And to stay up to date with the commands and infrastructure than you would
like to go for Fedora SELinux guide. It might as well give you partial
details on the design of SELinux, although SELinux by Example has a very
clear description of the design in its first section. Policy models are
discussed in section 2.

On Wed, Jan 28, 2009 at 12:44 AM, Sutton, Harry (MSE)
<harry.sutton@hp.com>wrote:

> Hi Josh,
>
> I found that to be one of the (few) O'Reilly books that didn't really
> cut it for me on its stated subject matter; my preference is
> Prentice-Hall's "SELinux by Example, Using Security Enhanced Linux", by
> Frank Mayer, Karl MacMillan and David Caplan (ISBN 0-13-196369-4). It's
> a much clearer (and more comprehensive) treatment of the theory in depth
> you're asking for.
>
> Best regards,
>
>    /Harry Sutton, RHCA / RHCSS
>     Hewlett-Packard Company
>
> Joshua Kramer wrote:
> > Howdy Folks,
> >
> > I have a copy of the O'Rielly SELinux book from 2005.
> >
> > Many things have changed as far as the implementation and practice.
> > However, is this still a good book to read if I just want to learn the
> > theory in-depth?  Or have basic elements of SELinux changed since then?
> >
> > Thanks!
> > -Josh
> >
> >
>
>


-- 
Shaz

[-- Attachment #2: Type: text/html, Size: 1776 bytes --]

Re: O'Rielly SELinux Book (2005)

[Justin P. Mattock]

Shaz wrote:
> And to stay up to date with the commands and infrastructure than you 
> would like to go for Fedora SELinux guide. It might as well give you 
> partial details on the design of SELinux, although SELinux by Example 
> has a very clear description of the design in its first section. 
> Policy models are discussed in section 2.
>
> On Wed, Jan 28, 2009 at 12:44 AM, Sutton, Harry (MSE) 
> <harry.sutton@hp.com <mailto:harry.sutton@hp.com>> wrote:
>
>     Hi Josh,
>
>     I found that to be one of the (few) O'Reilly books that didn't really
>     cut it for me on its stated subject matter; my preference is
>     Prentice-Hall's "SELinux by Example, Using Security Enhanced
>     Linux", by
>     Frank Mayer, Karl MacMillan and David Caplan (ISBN 0-13-196369-4).
>     It's
>     a much clearer (and more comprehensive) treatment of the theory in
>     depth
>     you're asking for.
>
>     Best regards,
>
>        /Harry Sutton, RHCA / RHCSS
>         Hewlett-Packard Company
>
>     Joshua Kramer wrote:
>     > Howdy Folks,
>     >
>     > I have a copy of the O'Rielly SELinux book from 2005.
>     >
>     > Many things have changed as far as the implementation and practice.
>     > However, is this still a good book to read if I just want to
>     learn the
>     > theory in-depth?  Or have basic elements of SELinux changed
>     since then?
>     >
>     > Thanks!
>     > -Josh
>     >
>     >
>
>
>
>
> -- 
> Shaz
>
In any case(from my point of view) seeing any  info
about SELinux is nice to see.
hopefully more people adopt the policy.
eventually(hopefully) this will be a something that
every system adopts;

regards;

Justin P. Mattock,



--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.