May 1, 2024
Updated July 10, 2025
14 minute read
Security-Enhanced Linux (SELinux) is an access control mechanism for Linux operating systems. It provides mandatory access controls (MAC) that restrict what users and processes can access and modify on a system. SELinux is aimed at enforcing information flow control and preventing unauthorized access to sensitive data. It is often used to enhance the security of web servers, databases, and other critical systems.
Why Learn SELinux?
There are several reasons why you might want to learn SELinux:
9bdiiu|
Find a path to becoming a SELinux. Learn more at:
OpenCourser.com/topic/9bdiiu/selinu
Reading list
We've selected 16 books
that we think will supplement your
learning. Use these to
develop background knowledge, enrich your coursework, and gain a
deeper understanding of the topics covered in
SELinux.
A practical guide for Linux administrators, this book focuses on controlling the secure state of systems using SELinux. It covers core concepts, configuration, and practical examples, including hardening virtualization with sVirt and Docker. This edition is recent, making it highly relevant for contemporary SELinux administration tasks and deepening understanding.
Authored by a key contributor to the SELinux project, this book is expected to provide practical guidance on applying SELinux to secure Linux systems. It would be highly relevant for administrators and security professionals looking for real-world application and deeper understanding of SELinux in practice.
Is considered a foundational text for understanding SELinux. It provides a hands-on guide covering architecture, security models, and policy language. While an older publication, it is invaluable for grasping the core concepts and is often referenced for its detailed explanation of policy writing, making it suitable for those seeking a broad or deeper understanding.
This video course provides comprehensive training on understanding and using SELinux, covering basics to advanced topics like MLS/MCS and container security. It includes labs for practical learning, making it highly suitable for hands-on users and those preparing for certifications. While not a book, it's a valuable learning resource.
A book on SELinux internals would explore the inner workings of SELinux within the Linux kernel and userspace. This highly technical resource is for those who require a deep understanding of how SELinux functions at a programming level, suitable for researchers, kernel developers, and security experts.
Offers a rulebook for creating and evaluating SELinux rulesets. It is geared towards administrators looking to harden their Linux server security through practical examples and recipes. It is more focused on practical application and deepening understanding through hands-on policy management.
This document from the NSA goes into detail about how SELinux is implemented within the Linux Security Module framework. It highly technical resource best suited for those looking to understand the underlying architecture and mechanisms of SELinux at a deep level. It is more of a reference for advanced users and researchers.
Official documentation from the Android Open Source Project detailing the implementation and use of SELinux in Android. This crucial resource for developers and administrators working with Android, offering insights into policy enforcement and compatibility in a mobile environment.
An earlier edition of the popular 'SELinux System Administration' series by Sven Vermeulen. provides a solid foundation in SELinux administration concepts and practices. While newer editions exist with updated information, this can still serve as a useful resource for understanding the core administrative tasks and principles.
Provides a gentle introduction to SELinux. It good starting point for anyone who wants to learn more about SELinux.
This research paper focuses on the application of SELinux in the Android operating system. It is relevant for those interested in contemporary applications of SELinux beyond traditional Linux distributions and provides insight into its use in mobile security. It's more suited for graduate-level or professional readers interested in specialized topics.
An earlier edition of the Third Edition, this book still covers core SELinux concepts and leveraging SELinux for system protection. While the Third Edition is more current, this book can still be a valuable resource for understanding fundamental concepts and administration tasks, especially if the latest edition is not readily available.
This section within a broader book on cloud security provides an introduction to SELinux in the context of enterprise cloud environments. It offers a good starting point for understanding SELinux's relevance in modern cloud security practices, suitable for those seeking a broad understanding within a specific domain.
While not exclusively about SELinux, this book covers Linux security broadly, including the role of SELinux in hardening systems. It is useful for providing background and prerequisite knowledge in overall Linux security before diving deep into SELinux, making it suitable for a broader understanding within a security context.
This resource from Red Hat provides a more simplified introduction to SELinux concepts like type enforcement and Multi-Category Security. While not a traditional book, it serves as a good starting point for beginners or those who prefer a more visual and less technical introduction to the topic.
For more information about how these books relate to this course, visit:
OpenCourser.com/topic/9bdiiu/selinu
Save
