- WHAT?
This book describes the basics of SELinux and remote attestation using Keylime, and focuses on securing local access to a machine using PAM.
- WHY?
You would like to be introduced to security solutions available on SUSE Linux Enterprise Micro.
- EFFORT
The SELinux topic takes approx. 40 minutes to read. The PAM configuration takes approx. 20 minutes to read. The Keylime attestation takes approx. 15 minutes.
- GOAL
A better understanding of SELinux, PAM and Keylime.
Publication Date: 27 Sep 2024
List of Examples
- 1.1 Example lines from
/etc/audit/audit.log
- 1.2 Analyzing audit messages
- 1.3 Viewing which lines deny access
- 1.4 Creating a policy module allowing an action previously denied
- 2.1 PAM configuration for sshd (
/etc/pam.d/sshd
) - 2.2 Default configuration for the
auth
section (common-auth
) - 2.3 Default configuration for the
account
section (common-account
) - 2.4 Default configuration for the
password
section (common-password
) - 2.5 Default configuration for the
session
section (common-session
) - 2.6 pam_env.conf