The software described in this documentation is either in Extended Support or Sustaining Support. See https://www.oracle.com/us/support/library/enterprise-linux-support-policies-069172.pdf for more information.
Oracle recommends that you upgrade the software described by this documentation as soon as possible.
Oracle Linux provides a complete security stack, from network firewall control to access control security policies, and is designed to be secure by default.
Traditional Linux security is based on a Discretionary Access
Control (DAC) policy, which provides minimal protection from
broken software or from malware that is running as a normal user
or as root
. The SELinux enhancement to the
Linux kernel implements the Mandatory Access Control (MAC) policy,
which allows you to define a security policy that provides
granular permissions for all users, programs, processes, files,
and devices. The kernel's access control decisions are based on
all the security relevant information available, and not solely on
the authenticated user identity. By default, SELinux is enabled
when you install an Oracle Linux system.
For more information, see Section 3.7, “Configuring and Using SELinux”.