The Linux kernel source code is constantly being developed by companies, volunteers, and non-profit organizations. Security-Enhanced Linux (in Spanish, Linux with enhanced security ) is one of these extensions of the Linux kernel and is available as a security module. SELinux has been an official component of the Linux kernel since 2003. Some Linux distributions include SELinux out of the box, although this module can be easily disabled. SELinux helps administrators to control all system processes strictly, blocking those that are not considered necessary. In this way, SELinux greatly reduces the risk posed by security breaches in user programs.
In general, it is a good idea to restrict the access rights of all programs, even when they are trusted. In this way, if an application is hijacked by a third party, the damage done can be greatly reduced. On the other hand, if a program infected by malware can access all the processes and files of the system, the danger may be greater. SELinux limits access and therefore also the extent of possible damage..