How best get rid of SELinux?

[Mike McCarty]

Ed Greshko wrote:
> Gene Heskett wrote:
> 
> 
>>I have a firewall that has so far been bulletproof.  Its called dd-wrt, run on 
>>an old scrap x86 box, booting busybox from a cf card, no drives in it & only 
>>2 fans.  
> 
> 
> I'm not sure why you are comparing the functions of SELinux with the
> functions of a firewall.  It would be nice to hear your interpretation of
> the issues that SELinux targets v.s. what a Firewall targets.  If you think
> they serve the same functions it would be nice if you would cite your source.
> 

Umm, I think they have very little in common, myself, except
in some sort of vague overall "enhanced security" sense.

The firewall intends to prevent compromise.
SELinux intends to mitigate damage on a compromised machine.

Note that I speak of intent, not what is accomplished.

Mike
-- 
p="p=%c%s%c;main(){printf(p,34,p,34);}";main(){printf(p,34,p,34);}
Oppose globalization and One World Governments like the UN.
This message made from 100% recycled bits.
You have found the bank of Larn.
I can explain it for you, but I can't understand it for you.
I speak only for myself, and I am unanimous in that!