Announcement

Collapse
No announcement yet.

SELinux In Linux 6.6 Removes References To Its Origins At The US NSA

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • nanonyme
    replied
    Originally posted by andyprough View Post
    With Snowden safely exiled to Russia and Assange safely locked up in prison and facing extradition, the NSA boys have got to be feeling like the world has been set right again.
    I have to say safely exiled to Russia is a complete oxymoron. If you are treated well after being exiled there, it's because someone managed to politically weaponize you.

    Leave a comment:


  • schmidtbag
    replied
    Originally posted by billyswong View Post
    Taliban said a good female citizen shouldn't study in University or fly aboard for that. What a "great life". https://www.bbc.com/news/world-asia-66636750
    How does it make sense to compare my privileged position (that a company like Google or Amazon are just seeking to profit from) to an oppressive government seeking to take away a human right? Like seriously think about what you're trying to say here: I should concern about these companies figuring out what kind of products I like in order to produce ads I'm more likely to click on because an Afghani woman is deliberately kept uninformed. That's absurd.

    Unlike her, there is absolutely nothing my government unrighteously restricts/deprives me of, or anyone I know for that matter. If anything, it ought to be more restricting since the wealthy can kinda do whatever they want. My point is: I live a great life at nobody's expense but my own, and there is nothing morally sound I wish was available to me.

    Leave a comment:


  • kerbastrar
    replied
    Originally posted by skeevy420 View Post
    All things considered, I'm more worried about the Chinese and TikTok than I am the Americans and SELinux. One is a closed source app with ties to the Chinese Communist Party/Government that requires you to disable security protections to fully work whereas the other one is an open source security protection that tries to keep us safe from nefarious actors.

    It also doesn't help that TikTok uses different algorithms for different countries and peoples and the one used for Americans and western society pushes content to intentionally divide and anger Americans.

    TikTok is literally the Communist Party Propaganda Machine.
    Communist propaganda from an app you have to voluntarily install is the least of my concerns, compared to a domestic spy agency that ignores privacy laws and shares data with everyone who has the power to incarcerate me over being a domestic dissident

    Leave a comment:


  • billyswong
    replied
    Originally posted by schmidtbag View Post
    Yup and I still stand by that.
    Don't break the law and you've got nothing to worry about. Seriously, it's not that hard to have a great life and be a good citizen at the same time. That's what gets me to question people like you: the only reason you care is because you're probably doing something morally objectionable.
    Taliban said a good female citizen shouldn't study in University or fly aboard for that. What a "great life". https://www.bbc.com/news/world-asia-66636750

    Leave a comment:


  • L_A_G
    replied
    Man the number of mental 12-year-olds in this thread positing the usual "USA EVIL" take and people complaining about SELinux just doing it's job.

    Seriously people; Grow up already. I know you're all in your 20s, 30s and 40s. Not 12.

    Leave a comment:


  • billyswong
    replied
    Originally posted by avis View Post

    Except /var/log/audit/audit.log which I presume you never checked.



    Works perfectly everywhere I use it. Maybe you could have started with some basic manuals.
    So how do someone not aware of the existence of SELinux suddenly know to look at that particular log file locating in that obscure place? Please enlighten everyone here. If you want to defend SELinux, you may suggest some killer feature that other modules such as AppArmor can't. But when someone said "I didn't know my problem is due to SELinux thus lost a day of time", response such as "you should have gone take a look at a log file that only SELinux users will watch out for" is NOT an answer.

    Leave a comment:


  • schmidtbag
    replied
    Originally posted by Paradigm Shifter View Post
    But hey, as others have said in threads here you shouldn't worry unless you have something to hide, right?

    Never mind that many laws are written in such a way that you're wrong no matter what do you, if the authority decides they want to prosecute/persecute you.
    Yup and I still stand by that.
    Don't break the law and you've got nothing to worry about. Seriously, it's not that hard to have a great life and be a good citizen at the same time. That's what gets me to question people like you: the only reason you care is because you're probably doing something morally objectionable.

    Leave a comment:


  • avis
    replied
    Originally posted by markg85 View Post
    Noting, absolutely nothing at all, was even remotely hinting at selinux at this point
    Except /var/log/audit/audit.log which I presume you never checked.

    Originally posted by markg85 View Post
    I wasn't expecting to be bitten that hard by selinux again, but yeah, i was. It's a monstrous dumb bullshit piece of tech that should be thoroughly killed from linux in my opinion. And yes, that's only because it's so freaking stealthy in the background where you don't even know that it is causing your troubles. It would've been much better if it somehow were communicated better. But then again, a distribution like Arch - that thrives these days - doesn't use selinux at all. So if they don't need it why would i even bother using it? The tech is pointless in my view.
    Works perfectly everywhere I use it. Maybe you could have started with some basic manuals.

    Leave a comment:


  • jeisom
    replied
    Why should this be rejected? I have never heard anyone refer to it as NSASELinux. Just SELinux. And I’d be worried about the stuff that is not branded honestly.

    Leave a comment:


  • mangeek
    replied
    Originally posted by markg85 View Post
    Selinux. the single most annoying linux component ever build. Which is imho still true to this very day.

    ...

    I'm sure it has a special place for some people. To those: have fun with it. I've been bitten by it yet again and will very happily disable it again on new installs.

    There's always the people here too who are like security addicted and enable every feature that adds more security. Fine by me, you do you, i do me. Don't try to convince me to run that garbage.
    So I'm one of those people. I can totally understand that SELinux is a pain in the ass for your desktops or if you just have a few servers, but I've got 2000+ server VMs worth millions of dollars in front of tens of thousands of users who might be schlepping malware in and out of the environment on their phones and laptops. I hate working with SELinux, but I love that weird binaries trying to do novel things on systems are gonna get blocked and leave logs for me to look at. I sleep easier knowing that SELinux is requiring a SYSADMIN to approve novel activity.

    By all means, shut it off or switch it to permissive mode on your systems, but it's a powerful tool for those of us trying to keep malicious activity from happening in large production environments.

    Leave a comment:

Working...
X