SELinux (Security Enhanced Linux)

http://en.wikipedia.org/wiki/Security-Enhanced_Linux

This is a Linux feature developed by NSA (National Security Agency).  It is not a Linux distribution, but a set of modification that can be applied to Unix-like OS (Operating System) kernels.

http://www.enterprisenetworkingplanet.com/netsecur/article.php/3712891/Tips-for-Taming-SELinux.htm

This is a really good overview article of what SELinux is and is not.  

MAC (Mandatory Access Controls) - enforced by SELinux.

DAC (Discretionary Access Control) - the old way of controlling what privileges a user can set on a file.

The SELinux policy has no concept of an all-powerful superuser.  It looks at things from the perspective of what is allowed.

An Internet-facing server should be locked down very strictly.

FC3 (Fedora Core 3) allows a targeted policy - "allow all, deny as needed."

http://www.centos.org/docs/5/html/Deployment_Guide-en-US/ch-selinux.html

Some more good information.  

AVC (access vector cache)

Fedora - an RPM-based, general purpose collection

http://en.wikipedia.org/wiki/Fedora_(operating_system)

Supported by Red Hat to support advancement of RPM based OS.

 

http://distrowatch.com/dwres.php?resource=major

Getting VNC to Run

This has been a pain, but here goes:

Install Openssh

# sudo apt-get install openssh-server openssh-client

Test to make sure that the ssh is working.

# ssh localhost

The rest of this is a bit of guess from watching what Steve was doing.

Install x11vnc and vnc-java.

Connect to host machine using ssh.

ssh stan@XX.XX.X.XX

Start the x11vnc service on host machine.

x11vnc -forever -usepw -httpdir /usr/share/vnc-java/ -httpport 5800

There will be a port number given after the service starts.  The number given was 5901.

Open a terminal server client on the guest machine.

Computer:  xx.xx.x.xx:5901

Protocal:  VNC

User Name:  stan