MAC

Jan 1, 0001

Definition

Mandatory Access Control (MAC) is a security model used to restrict the ability of subjects (users or processes) to access or perform operations on objects (files, directories, or resources) based on predefined policies. Unlike Discretionary Access Control (DAC), where the owner of an object can set permissions, MAC policies are centrally controlled and enforced by the system, ensuring a higher level of security by preventing unauthorized access and modification.

Secure Settings Example

# SELinux configuration for enforcing MAC
SELINUX=enforcing
SELINUXTYPE=targeted

Insecure Settings Example

# SELinux configuration with MAC disabled
SELINUX=disabled
SELINUXTYPE=targeted

MAC

Definition

Secure Settings Example

Insecure Settings Example

Ask AppSec: free security newsletter

Ask AppSec: free security newsletter