We are currently implementing RedHat Linux 5.5 with SELinux enabled. We are using LDAP on z/OS for the authentication. There are some things we had to learn about SELinux before we could successfully install some products and some vendors do not help much. We install third party software with SELinux in permissive mode which, with setroubleshootd enabled, allows you to see what would cause a failure when in enforcing mode. This allows you to correct the SELinux rules so the product works correctly and gives you something to beat on the vendor with. Most products that we are using either do not require changes or have minimal changes.
------------------------------------ Kevin George Compuware / U.S. Office of Personnel Management -----Original Message----- From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, JAMES (CTR) Sent: Friday, July 15, 2011 9:39 AM To: LINUX-390@VM.MARIST.EDU Subject: Does anyone use SELinux on their zLinux platforms? Does anyone have SELinux up and running as their RBAC security on a zLinux server? I am also curious to know how the have user authentication set up, are they using files (/etc/passwd) LDAP, NIS, PAM or other methods. I am on the learning curve here and would like to hear user experiences as I move forward. I welcome the good, bad and the ugly of comments on this topic. James Chaplin Systems Programmer, MVS, zVM & zLinux Base Technologies, a CA Technologies Company ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For more information on Linux on System z, visit http://wiki.linuxvm.org/ ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For more information on Linux on System z, visit http://wiki.linuxvm.org/