Scientific Linux Forum.org



  Reply to this topicStart new topicStart Poll

> SELinux MLS and Apache, Using MLS for securing web server
dania
 Posted: Jul 12 2012, 04:22 PM
Quote Post


SLF Newbie


Group: Members
Posts: 1
Member No.: 1690
Joined: 12-July 12









Hello guys !!!

Last time I started to study SELinux and its mls policy. Probably someone of you deals with this. There is an apache server and a remote host. On the both systems (fedora 15) selinux mls policy is installed. Security context is transmitted by netlabel tool. Apache server contains a couple of html pages with different security contexts(i.e. security levels). Scenario: On the remote host client runs web browser with a certain sec. level and according to this level he is able to browse only pages on the server with security level <= his web browser's level(i.e. his clearance). In other words, no read up rule by Bell Lapudula model.

I want to implement such a system, but I have no enough information for this. Google provides with a couple of articles related to it as this for example http://code.google.com/p/sepgsql/wiki/Apache_SELinux_plus , but most of them are relatevely old (2009 year of posting) and is not enough clear how to configure it.

Thank you for any help.
PM
^
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:

Topic Options Reply to this topicStart new topicStart Poll