I’m considering implementing SELinux in my Debian setup, but I’ve read that it was initially developed by the NSA.
Can anyone shed any light on this? Has SELinux been audited? When and by whom? Does the NSA still have anything to do with SELinux, or is this a “US Navy creating Tor” sort of scenario?
Yeah it’s really not that difficult once you get the basic concepts, then it’s navigating your own maze of rules :p
Things like ausearch, aureport, audit2allow make light work of it.