Why don't we confine Firefox with SELinux?
That is one of the most often asked questions, especially after a new CVE like CVE-2015-4495, shows up. This vulnerability in firefox allows a remote session to grab any files in your home directory. If you can read the file then firefox can read it and send it back to the website that infected your browser.
The big problem with confining desktop applications is the way the desktop has been designed.
The Community School of Excellence (CSE) in Saint Paul, Minnesota, provides something unique to the open source world: a Linux club based in a Hmong charter school. One could say that our club, the CSE Asian Penguins, provides a dose of diversity to the Linux community, which does not have many Hmong participants (although we keep looking for them!).
I'm announcing the release of the 4.1.5 kernel.
All users of the 4.1 kernel series must upgrade.
The updated 4.1.y git tree can be found at:
and can be browsed at the normal kernel.org git web browser: