Network routing based on SELinux?
by Sven Vermeulen, post on Wed 21 August 2013Today we had a question on #selinux if it was possible to route traffic of a specific process using SELinux. The answer to this is "no", although it has to be explained a bit in more detail.
SELinux does not route traffic. SELinux is a local mandatory access control system …
Peer labeling in SELinux policy
by Sven Vermeulen, post on Sun 12 May 2013Allow me to start with an important warning: I don't have much hands-on experience with the remainder of this post. Its based on the few resources I found on the Internet and a few tests done locally which I've investigated in my attempt to understand SELinux policy writing for networking …