While modern IT environments move towards Linux containers, the need to secure these environments is as relevant as ever. Containers are a process isolation technology. While containers can be a defense mechanism, they only excel when combined with SELinux. Fedora SELinux engineering built a new standalone tool, udica, to generate SELinux policy profiles for containers […]

Source: LXer – Use udica to build SELinux policy for containers