A security enhancement to Linux which allows users and administrators more control over access control.
security enhanced linux (selinux) is a rolebased access control solution, developed by the us spying agency nsa and redhad, for internal and general use.
access can be constrained on such variables as which users and applications can access which resources. these resources may take the form of files. standard linux access controls, such as file modes (rwxrxrx) are modifiable by the user and the applications which the user runs. conversely, selinux access controls are determined by a policy loaded on the system which may not be changed by careless users or misbehaving applications.