Simplicity is a form of art...
  • Archives

Chroots for SELinux enabled applications

Date Sun 22 June 2014 By Sven Vermeulen Category SELinux Tags bind-mount / bindmount / mount / read-only / ro / selinux

Today I had to prepare a chroot jail (thank you grsecurity for the neat additional chroot protection features) for a SELinux-enabled application. As a result, "just" making a chroot was insufficient: the application needed access to /sys/fs/selinux. Of course, granting access to /sys is not something I like …

more ...

  • Social

    • GitHub
    • Twitter
  • Links

    • Gentoo Linux

© 2014 Sven Vermeulen · Powered by pelican-bootstrap3, Pelican, Bootstrap

Back to top