Ask UbuntuAfter installing SELinux on AWS instance what should I set to allow SSH login?Question After installing SELinux on an AWS instance what should I set to allow SSH login?
Version Ubuntu 24.04 LTS.
Background I had a working AWS instance but after I installed SELinux and activa...
#selinux
1 post1 participant0 posts today
As #NetworkManager's #SSH VPN/tunnel plugin has now been ported to GTK4 and works directly from the #GNOME Control Center panel, I thought I'd finally try it out.
Once you figure out that you must only fill the gateway field, leave all IPs fields alone, tweak stuff in the Advanced dialog to have a working SOCKS proxy with "no tunnel", then it "works"… as long as you use the standard SSH port.
With SSH server ports other than 22, it fails on #Fedora… due to #SELinux 
bugzilla.redhat.com1808435 – AVCs on establishing an SSH tunnel connection with NetworkManager-SSH
Continued thread
I'll have SELinux for this Gentoo install, add in a little bit of spice to my Gentoo experience.
Dieser Montag ist zu ruhig:
- 39 ungelesene Mails
- DATEV fully operational 
- Monitoring still
- Keine weinenden User 
So kann die #it nicht arbeiten, wir brauchen den Kick und Erfolgserlebnisse!
Tages-Spiel-Projekt: #selinux #mls. Wer da durchsteigt, bekommt diesen Monat 500€ Prämie aufs Gehalt. Manchmal muss man sich eben eine Beschäftigung aus den Fingern saugen 
Let the hunger games begin 
stopdisablingselinux.comStop Disabling SELinux
New Episode: hpr4328 :: Use SELinux the easy way
You don't have to be an expert on SELinux to use it effectively
Hosted by Klaatu on Wednesday, 2025-03-05 is flagged as Clean and is released under a CC-BY-SA license.
Tags: #linux, #selinux, #permissions.
Today on the #HackerPublicRadio #Community #Podcast
hackerpublicradio.orgHacker Public Radio ~ The Technology Community PodcastHacker Public Radio is a podcast that releases shows every weekday Monday through Friday. Our shows are produced by the community (you) and can be on any topic that is of interest to hackers and hobbyists.
Replied to Christiaan Kras
@Htbaa Don’t make Dan Walsh cry!
https://stopdisablingselinux.com/
I’m told he answers questions about selinux.
stopdisablingselinux.comStop Disabling SELinux
Ugh #SELinux is the worst. I'm sure it's 100% my lack of understanding it though. I have my installation scripts all worked out with #Rex. At first for #AlmaLinux 8 but also adapted it to 9.
I had it all working properly under 9, but this new VPS somehow mounts the root disk in read-only mode after a reboot when SELinux has been enabled.
I'm *really* tempted to just keep it in permissive mode and ignore it for the rest of my life.
Newsupdate 02/25 - #Python3.14, #FOSDEM 2025, #GNOME48 Beta, #KDE #Plasma6.3, #openSUSE und #SELinux - #FOCUS_ON: #Linux - #Podcast:
Python 3.14 und KDE Plasma 6.3 erscheinen, während sich der Umfang des kommenden GNOME 48 abzeichnet. Das SELFHTML-Projekt wird 30 Jahre alt und mit RePebble wird einem längst totgesagtem Projekt neues Leben eingehaucht. In der Kernel-Mailingliste entfacht ein Streit über Rust - mit Auswirkungen für das Kernel- und Asahi Linux-Projekt.
@opensuse Tumbleweed rolling release moves from AppArmor to SELinux for its underlying security layer
https://www.linux-magazine.com/Online/News/openSUSE-Tumbleweed-Ditches-AppArmor-for-SELinux
#openSUSE #Tumbleweed #AppArmor #SELinux #Linux #OpenSource #distro #FOSS #security
with PDA (and 
) So #opensuse switched to #selinux. Changing my systems works. Only Steam is not running, because selinux blocks boolean.
I have to admit, that I don't understand selinux. Is there a easy to understand tutorial? I don't want to mess around.
In the suse forum I found this solution:
sudo setsebool selinuxuser_execmod 1
..but with hint: If you understand the risks.
I don't understand the risc :)
Replied to openSUSE Linux
Do you plan on doing more #SELinux hardening than #Fedora does?
Because how it is, SELinux on Fedora just makes #run0 a pain to use, while user processes are all unconfined, making it pretty pointless.
Or do you plan on making it user friendly?
There are many issues with #Flatpak that should be addressed. Alternatively, #UID #Sandboxing using #SimpleSandbox and SELinux could be used, which is way simpler and more secure, but relies on native packages
wiki.gentoo.orgSimple sandbox - Gentoo wiki
De 0 à #WordPress en full ansible, episode 6 ! À l'étable : https://twitch.tv/ahp_nils ! #sysadmin #devops #twitchfr #twitchstreamer #TwitchStreamers #linux #selinux
TwitchAHP_Nils - Twitch[FR][sysadmin][devops] On apprend la ligne de commande sous Linux en jouant avec GameShell !social !homelab
#openSUSE Adopts #SELinux as Default MAC (Mandatory Access Control) System on New #Tumbleweed Installations https://9to5linux.com/opensuse-replaces-apparmor-with-selinux-on-new-tumbleweed-installations
#Tumbleweed Weekly Review 
#SELinux is now the default LSM for new installs! Plus:
KDE Gear 24.12.2 GNOME Shell 47.4 GIMP 3.0 RC3
Coming soon: #Linux Kernel 6.13.2, #PipeWire 1.3.82 & #Python 3.13! 
https://lists.opensuse.org/archives/list/factory@lists.opensuse.org/thread/Z4GBJPYANFF4KQ2FL4NKPHNRNMLOCPMG/
Stay updated on #Tumbleweed's #SELinux transition! 
Follow discussions & progress on #openSUSE's Factory mailing list 
https://lists.opensuse.org/archives/list/factory@lists.opensuse.org/thread/G3W5NIY3OKRBHPHWTPYEUPSS4LKZN77N/
SELinux replaces AppArmor as the default Mandatory Access Control system in openSUSE Tumbleweed, with enforcing mode enabled on new installations.
https://linuxiac.com/opensuse-tumbleweed-moves-to-selinux/
#openSUSE anuncia que empieza a migrar definitivamente a #SELinux > Usuarios de #Ubuntu cabreados porque ven que una gran familia de #Linux decide abandonar una tecnología de #Canonical.