I’m really happy to announce that SELinux is now available in Ubuntu 8.04 “Hardy Heron”. This is the result of the amazing work of the ubuntu-security and ubuntu-hardened teams, as well as the huge contributions from the folks at Tresys. (note: SELinux will not be the default, but is available as a security option.)
If you would prefer to use SELinux over AppArmour, or if you’re just a good soul that would like to help test Ubuntu’s SELinux implementation, please read on.
Install SELinux in Ubuntu 8.04
All that is needed is to install the SELinux package, which will remove AppArmour and apply the SELinux policy.
sudo apt-get install selinux
If you run across any issues or bugs please report them against SELinux on launchpad. Welcome to a more secure Ubuntu!
The link to SELinux on Launchpad is broken.
@omegamormegil – I’ve fixed the link, thank you.
Taken from “https://wiki.ubuntu.com/HardySELinux”:
“If using aptitude instead of apt-get, you will need to manually remove apparmor and apparmor-utils, deselect selinux-policy-dummy, and then choose selinux-policy-refpolicy.”
Nice!
Hi,
Why does it want to replace 2.6.24-12-generic with 2.6.22-14-xen?
I don’t want to downgrade to 2.6.22…
@Corrin – that seems odd. Are you running Hardy with the latest updates?
Very nice posted , thx
NSA backdoor?
I tried to install SELinux on Hardy SERVER (Release Candidate). However, I got the following error:
Setting up selinux (0.2) …
Unknown terminal: dtterm
Check the TERM environment variable.
Also make sure that the terminal is defined in the terminfo database.
Alternatively, set the TERMCAP environment variable to the desired
termcap entry.
debconf: whiptail output the above errors, giving up!
dpkg: error processing selinux (–configure):
subprocess post-installation script returned error exit status 255
Setting up selinux-policy-refpolicy-unconfined (0.0.20071214-0ubuntu3) …
Errors were encountered while processing:
selinux
E: Sub-process /usr/bin/dpkg returned an error code (1)
TERM is not set properly or Linux does not support your terminal
@Adams:
Sorry for the lack of knowledge but this is open source, right? How in the world could that be a backdoor?!
The CIA or the NSA has planted an agent in the development team.
when i tyr the command “aptitude install selinux” the system shows:
…
Couldn’t find package “selinux”.However the following packages contain “selinux” in their name: libselinux1
…
What’s the matter?
No backdoor. NSA doesn’t want your data, they already have it. They just want to deny others access to your data.
This a line of my system log. Why does it say REDHAT ????
Mar 9 11:14:03 boss-desktop dhcdbd: message_handler: message handler not found under /com/redhat/dhcp/eth0 for sub-path eth0.dbus.get.host_name
Is SELINUX for a desktop or for a server?
Please clarify if this is normal.
Thanks,
Mir.
@Mir – SELinux is commonly used in both environments, both Desktop and Server. The error you’re getting doesn’t look related to SELinux though. Its coming from dhcpd.
Is it available for latest ubuntu release 9.04? what are the pros and cons of using this on ubuntu?
@Indian
SELinux—>Ubu 9.10
this is fantastic for people who need max security
Gud hint.
But better to explain more….
(How to use it)
Thanx
i install selinux on ubuntu 10.10 use the commend:
sudo apt-get install selinux
get the message following:
the following fackages have unmet dependencies:
selinux : Conflicts: apparmor but 2.5.1-oubuntu0.10.10.4 is to be installed
E: Broken packages
ok,first thanks everyone,i have solved the problem ,because the apparmor conflicts with the selinux, uninstalling the apparmor will workes.