SELinux by Example - Frank Mayer, Karl MacMillan, David Caplan

SELinux by Example

Using Security Enhanced Linux

, , (Autoren)

Buch | Softcover
456 Seiten
2006
Prentice Hall (Verlag)
978-0-13-196369-6 (ISBN)
45,90 inkl. MwSt
  • Titel ist leider vergriffen;
    keine Neuauflage
  • Artikel merken
Serving as a guide to using SELinux in production environments, this book illuminates various facets of working with SELinux, from its architecture and security object model to its policy language. It explains SELinux sample policies. It also contains a comprehensive SELinux policy language reference and covers features in Fedora Core 5.
SELinux: Bring World-Class Security to Any Linux Environment!

 

SELinux offers Linux/UNIX integrators, administrators, and developers a state-of-the-art platform for building and maintaining highly secure solutions. Now that SELinux is included in the Linux 2.6 kernel—and delivered by default in Fedora Core, Red Hat Enterprise Linux, and other major distributions—it’s easier than ever to take advantage
of its benefits.

 

SELinux by Example is the first complete, hands-on guide to using SELinux in production environments. Authored by three leading SELinux researchers and developers, it illuminates every facet of working with SELinux, from its architecture and security object model to its policy language. The book thoroughly explains SELinux sample policies— including the powerful new Reference Policy—showing how to quickly adapt them to your unique environment. It also contains a comprehensive SELinux policy language reference and covers exciting new features in Fedora Core 5 and the upcoming Red Hat Enterprise Linux version 5.

 

• Thoroughly understand SELinux’s access control and security mechanisms

• Use SELinux to construct secure systems from the ground up

• Gain fine-grained control over kernel resources

• Write policy statements for type enforcement, roles, users, and constraints

• Use optional multilevel security to enforce information classification and manage users with diverse clearances

• Create conditional policies that can be changed on-the-fly

• Define, manage, and maintain SELinux security policies

• Develop and write new SELinux security policy modules

• Leverage emerging SELinux technologies to gain even greater flexibility

• Effectively administer any SELinux system

Frank Mayer is cofounder and Chief Technology Officer of Tresys Technology, and has 23 years of experience in the design, development, and analysis of secure oper­ating systems. He has been an active contributor to SELinux for six years, and has initiated and participated in the development of many new SELinux innovations and tools. He also chairs the annual SELinux Symposium. Frank has published many papers on secure and trustworthy operating systems, and has also explored security in parallel computing, networks, and enterprise applications. Karl MacMillan is an active contributor in the SELinux community and has led the development of many important SELinux features. He is also a sought after speaker and consultant, and has helped many individuals and organizations under­stand and apply strong computer security with SELinux. Previous to his work on SELinux, Karl made important contributions in the fields of pattern recognition and evolutionary computing as applied to document and audio recognition, where he has numerous published papers. David Caplan is a senior security engineer at Tresys Technology with over 20 years of experience in computer security and a wide range of other programming- and software-related areas. He has worked with SELinux for six years as a contributor to many of the SELinux-related open source projects and has led multiple efforts in analyzing and constructing SELinux policy for a variety of systems.

Front Matter    i Preface    xix

Chapter 1: Background    3

Chapter 2: Concepts    15

Chapter 3: Architecture    39

Chapter 4: Object Classes and Permissions    59

Chapter 5: Type Enforcement    89

Chapter 6: Roles and Users    129

Chapter 7: Constraints    149

Chapyer 8: Multilevel Security    163

Chapter 9: Conditional Policies    183

Chapter 10: Object Labeling    205

Chapter 11: Original Example Policy    239

Chapter 12: Reference Policy    265

Chapter 13: Managing an SELinux System    295

Chapter 14: Writing Policy Modules    325

Appendix A: Obtaining SELinux Sample Policies    363

Appendix B: Participation and Further Information    369

Appendix C: Object Classes and Permissions    375

Appendix D: SELinux Commands and Utilities    401

Index    409

Erscheint lt. Verlag 10.8.2006
Reihe/Serie Prentice Hall Open Source Software Development Series
Verlagsort Upper Saddle River
Sprache englisch
Maße 179 x 234 mm
Gewicht 630 g
Themenwelt Informatik Betriebssysteme / Server Unix / Linux
Informatik Theorie / Studium Kryptologie
ISBN-10 0-13-196369-4 / 0131963694
ISBN-13 978-0-13-196369-6 / 9780131963696
Zustand Neuware
Haben Sie eine Frage zum Produkt?
eBook-Ausgabe
PDF (Adobe DRM)
37,46 €
Mehr entdecken
aus dem Bereich
Linux-Server - Dirk Deimeke; Daniel van Soest; Stefan Kania
Linux-Server
das umfassende Handbuch

von Dirk Deimeke; Daniel van Soest; Stefan Kania

Buch | Hardcover (2023)
Rheinwerk (Verlag)
69,90
Linux - Michael Kofler
Linux
das umfassende Handbuch

von Michael Kofler

Buch | Hardcover (2023)
Rheinwerk (Verlag)
49,90
Raspberry Pi - Michael Kofler; Charly Kühnast; Christoph Scherbeck
Raspberry Pi
Das umfassende Handbuch

von Michael Kofler; Charly Kühnast; Christoph Scherbeck

Buch | Hardcover (2024)
Rheinwerk (Verlag)
44,90
auf Facebook teilen
bei Twitter
Link zu dieser Seite kopieren