Is there a benefit for using SELinux or AppArmor?
Security access control for apps and processes. That’s it.
Think of AppArmor like Flatpaks and SELinux like NixOS or using a containerised guest with Distrobox or even a VM. But all of this without the hoops.
This is an oversimplification using comparisons of things you should know about already.
For details: https://wiki.archlinux.org/title/SELinux#Concepts:_Mandatory_Access_Controls
And: https://wiki.archlinux.org/title/AppArmor
2 Likes
Strangely, I seen more distros adopt the former and get rid of the latter.
I’ve seen the ditch apparmor trend cite vulnerabilities and Snap tentacles built in, but I have not independently researched this.
SELinux has expanded beyond Fedora, but I know from my short time with Fedora it was a false-positive machine for me. It was constantly claiming something was writing to something it was not supposed to write to. but on closer inspection is was all about the app’s misunderstanding of many permissions on the OS is built to be on.
With Endeavour it’s just been, for me, FirewallD, good hygiene, etc that has worked out best.
@joekamprad : someday I would love to learn the murky world of port irregularities like your post above. have always wanted to but never wanted to be a wireshark type. netstat more my speed.
Android uses selinux as well to my knowledge.