SELinux
E37338
SELinux (Security-Enhanced Linux) is a Linux kernel security module that provides a flexible, fine-grained mandatory access control (MAC) framework to enforce strict security policies on systems.
All labels observed (5)
| Label | Occurrences |
|---|---|
| SELinux canonical | 14 |
| Security-Enhanced Linux | 3 |
| Linux kernel security subsystem | 1 |
| Linux kernel via SELinux | 1 |
| SELinux for mandatory access control | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T286899 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: SELinux Context triple: [Linux, supportsSecurityFeature, SELinux]
-
A.
Dracut
Dracut is a town in northeastern Massachusetts, United States, known for its suburban character and proximity to the city of Lowell.
-
B.
SS Security Service (SD)
The SS Security Service (SD) was Nazi Germany’s intelligence and security agency of the SS, responsible for surveillance, repression, and ideological control within the Third Reich and occupied territories.
-
C.
Securitate
Securitate was the notorious secret police and intelligence service of communist Romania, known for its extensive surveillance, repression, and control over the population.
-
D.
Linux
Linux is a widely used open-source Unix-like operating system kernel that powers servers, desktops, mobile devices, and embedded systems around the world.
-
E.
SLV
SLV is the three-letter ISO 3166-1 alpha-3 country code assigned to El Salvador.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: SELinux Target entity description: SELinux (Security-Enhanced Linux) is a Linux kernel security module that provides a flexible, fine-grained mandatory access control (MAC) framework to enforce strict security policies on systems.
-
A.
Dracut
Dracut is a town in northeastern Massachusetts, United States, known for its suburban character and proximity to the city of Lowell.
-
B.
SS Security Service (SD)
The SS Security Service (SD) was Nazi Germany’s intelligence and security agency of the SS, responsible for surveillance, repression, and ideological control within the Third Reich and occupied territories.
-
C.
Securitate
Securitate was the notorious secret police and intelligence service of communist Romania, known for its extensive surveillance, repression, and control over the population.
-
D.
Linux
Linux is a widely used open-source Unix-like operating system kernel that powers servers, desktops, mobile devices, and embedded systems around the world.
-
E.
SLV
SLV is the three-letter ISO 3166-1 alpha-3 country code assigned to El Salvador.
- F. None of above. chosen
Statements (54)
| Predicate | Object |
|---|---|
| instanceOf |
Linux security module
ⓘ
mandatory access control system ⓘ |
| abbreviation | SELinux self-link ⓘ |
| basedOn | FLASK security architecture ⓘ |
| category |
Linux security
ⓘ
computer security software ⓘ |
| configurationFile | /etc/selinux/config ⓘ |
| defaultModeOnSomeDistros | enforcing ⓘ |
| developedBy |
National Security Agency
ⓘ
surface form:
NSA
Red Hat ⓘ National Security Agency ⓘ
surface form:
United States National Security Agency
open source community ⓘ |
| documentationWebsite | https://selinuxproject.org/ ⓘ |
| enforces | security policies ⓘ |
| fullName |
SELinux
self-linksurface differs
ⓘ
surface form:
Security-Enhanced Linux
|
| goal |
enforce least privilege
ⓘ
limit damage from compromised services ⓘ |
| hasMode |
disabled
ⓘ
enforcing ⓘ permissive ⓘ |
| implements | mandatory access control ⓘ |
| introducedIntoLinuxKernel | version 2.6 ⓘ |
| isFreeSoftware | true ⓘ |
| isOpenSource | true ⓘ |
| license | GNU General Public License ⓘ |
| originCountry |
United States of America
ⓘ
surface form:
United States
|
| partOf |
SELinux
self-linksurface differs
ⓘ
surface form:
Linux kernel security subsystem
|
| policyLanguage | SELinux policy language ⓘ |
| policyPackageExtension | .pp ⓘ |
| policySourceExtension | .te ⓘ |
| provides |
kernel-level access control
ⓘ
label-based security ⓘ |
| runsOn | Linux ⓘ |
| securityModel | MAC ⓘ |
| supports |
fine-grained access control
ⓘ
multi-category security ⓘ multi-level security ⓘ role-based access control ⓘ type enforcement ⓘ |
| usedIn |
CentOS
ⓘ
Debian ⓘ Fedora Linux ⓘ
surface form:
Fedora
Oracle Linux ⓘ Red Hat Enterprise Linux ⓘ Ubuntu (optional component) ⓘ |
| uses |
labels on files and processes
ⓘ
policy rules ⓘ security contexts ⓘ |
| usesTool |
audit2allow
ⓘ
chcon ⓘ getenforce ⓘ restorecon ⓘ semanage ⓘ setenforce ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: SELinux Description of subject: SELinux (Security-Enhanced Linux) is a Linux kernel security module that provides a flexible, fine-grained mandatory access control (MAC) framework to enforce strict security policies on systems.
Referenced by (20)
Full triples — surface form annotated when it differs from this entity's canonical label.