[ Thanks to Jane Walker for this link.
]
“Administrators often criticize Security Enhanced Linux
(SELinux) policies for being too complex, and they have a point.
Mandatory access control-based administration is tedious and easy
to misconfigure. It can be tough to handle the extended security
attributes across a range of users, processes and files or
directories that encompass more than one server. Novell addresses
this problem in its enterprise-class server offerings with the
AppArmor suite of policy management applications, but nothing
comparable exists yet for systems management in Red Hat enterprise
servers (or CentOS derivatives)…”