
Sign up to save your podcasts
Or


In this episode, Lucas and Luna dive into SELinux on Linux servers — specifically, why and how to implement targeted policies without breaking production workloads. Lucas walks through a real case from a financial services company that reduced their kernel-level vulnerability exposure by over 80 percent after enabling SELinux in enforcing mode on 200 servers. They discuss the common pain points: learning the audit2allow workflow, writing custom policy modules, and handling SELinux denials. They also compare SELinux to AppArmor, explaining when each makes sense. The conversation is grounded in practical steps — no theoretical fluff. By the end, listeners learn one concrete command sequence they can test on a non-production box this week. This episode is essential for any sysadmin who wants to move beyond basic file permissions and actually lock down their system calls.
#SELinux #LinuxSecurity #ServerHardening #Sysadmin #AccessControl #MandatoryAccessControl #SecurityPolicies #audit2allow #AppArmor #KernelSecurity #LinuxServer #ServerEngineering #Bash #DevOps #Technology #FexingoBusiness #BusinessPodcast
Keep every episode free: buymeacoffee.com/fexingo
By FexingoIn this episode, Lucas and Luna dive into SELinux on Linux servers — specifically, why and how to implement targeted policies without breaking production workloads. Lucas walks through a real case from a financial services company that reduced their kernel-level vulnerability exposure by over 80 percent after enabling SELinux in enforcing mode on 200 servers. They discuss the common pain points: learning the audit2allow workflow, writing custom policy modules, and handling SELinux denials. They also compare SELinux to AppArmor, explaining when each makes sense. The conversation is grounded in practical steps — no theoretical fluff. By the end, listeners learn one concrete command sequence they can test on a non-production box this week. This episode is essential for any sysadmin who wants to move beyond basic file permissions and actually lock down their system calls.
#SELinux #LinuxSecurity #ServerHardening #Sysadmin #AccessControl #MandatoryAccessControl #SecurityPolicies #audit2allow #AppArmor #KernelSecurity #LinuxServer #ServerEngineering #Bash #DevOps #Technology #FexingoBusiness #BusinessPodcast
Keep every episode free: buymeacoffee.com/fexingo