Documentation


Viewing posts for the category Omarine User's Manual

SELinux with omarine policy: An in-depth look at the security policy – secure program with its own domain: Part 5

SELinux with omarine policy: An in-depth look at the security policy - secure program with its own domain: Part 4

SELinux with omarine policy: An in-depth look at the security policy - secure program with its own domain: Part 3

File myapp.fc

myapp.fc defines the file security contexts, it has the following content:

SELinux with omarine policy: An in-depth look at the security policy - secure program with its own domain: Part 2

SELinux with omarine policy: An in-depth look at the security policy - secure program with its own domain: Part 1

A program running in its own domain is secure because we can design so that only it can access itsdata and no user can run the program (even root) except for those use is allowed by policy. The security policy is very strong and no application can interfere because it is controlled directly from the kernel security server.