danwalsh


Dan Walsh's Blog

Got SELinux?


Previous Entry Share Next Entry
SELinux & PaaS: Deep Dive on Multi-tenancy, Containers & Security with Dan Walsh, Red Hat
danwalsh

SELinux & PaaS: Deep Dive on Multi-tenancy, Containers & Security with Dan Walsh, Red Hat

Last week I went to Portland, OR for the OpenShift Origin Day.
I gave a talk about SELinux and OpenShift.

The talk covered  the importance of MAC and container/namespaces when using a multi-tenant environment like OpenShift.

The talk also covers enhancements I want to make to OpenShift gears (containers) and additional features that we will be adding.

The video has been posted to youtube.


Re: Red Hat vs. OpenVZ?

danwalsh

2013-04-24 01:50 pm (UTC)

Well Red Hat/Fedora is focused on what is in the upstream kernel. I have no problem with these other technologies.

(Unless they require Disabling SELinux)

I which the developers of these technolgies would work harder to either use the new technology or get missing componants into the upstream kernel.

Also for Full OS/CHroot Containers, Red Hat is still focusing on a KVM solution.

My goal with SELinux is to take the technology available in the Kernel and add security to it for all environments including Multi-Tenant environments.


You are viewing danwalsh