56
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 28 May 2026
56 points (93.8% liked)
Linux
65497 readers
295 users here now
From Wikipedia, the free encyclopedia
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.
Rules
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
- No misinformation
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
Community icon by Alpár-Etele Méder, licensed under CC BY 3.0
founded 7 years ago
MODERATORS
It was made by the NSA so that's already minus 5 points right there.
I'm not kidding. Look it up on DDG.
the code is right there guy
Have you read it? Do you trust it unread?
Don't tell me you actually read through the millions of lines of driver code in the Linux kernel
Some of it. I also don't assume that it's secure.
My dude, check this out (or don't, whatever), but the NSA has a Blue Team (defense) as well as a Red Team (the one you're irrationally angry at). The NSA Blue team is responsible for securing US computer systems. Look that up on DDG.
SELinix is a MAC layer built to supplement the DAC later (traditional UNIX permissions) intended to secure things the DAC doesn't.
With it, Apache can't read /etc/password or random locations like /opt/something/somewhere. Without it, we get the Equifax data breach of 2017.
Everyone saying "I can't stand up a simple web server with SELinux running" glosses over (or ignores) the fact that if they just put their files in the default location, which has the default contexts, it works. They just get pissed that they can't serve up /some/random/location/ without fixing the context so Apache is allowed to read the files.