Many no longer trust SELinux (an open-source contribution by the NSA) and rightfully want to disable it. Here’s how you can quickly disable it on CentOS 6

First Things: WHM Servers (Industry Standard) Do Not Use SELinux

WHM / Cpanel a popular control panel for webhosts is not compatible with SELinux. SELinux mostly enhances the Linux kernel security, but the Cpanel developers have decided not to support it. However, you can enable it after installing WHM quite easily

Disabling SELinux: Use Config File

SELinux is open-source and many developers from around the world are contributing code to the project. In general, a Linux machine should use SELinux. If you’re a little paranoid that it is in fact a NSA backdoor or if you simply want to get rid off it, here’s how to do it:

Disable Selinux Nsa Backdoor.png

pico /etc/selinux/config

Change SELINUX=enabled to SELINUX=disabled

Reboot your machine.

SELinux is now no longer active. However, I’m pretty sure if the NSA wants access to your server, they can get it quite easily. The blackmarket provides tons of exploits that allow an attacker to gain access. You should make sure to configure your firewall to disallow access to most services (except Apache, DNS, etc)

What’s your take on this? Are people just paranoid thinking this is a backdoor or could it really be a backdoor?