https://www.pistack.xyz/tags/access-control/ Recent content in Access-Control on Pi Stack Hugo en-us Sat, 16 May 2026 00:00:00 +0000 https://www.pistack.xyz/posts/2026-05-16-self-hosted-linux-mac-selinux-apparmor-smack-guide/ Sat, 16 May 2026 00:00:00 +0000 https://www.pistack.xyz/posts/2026-05-16-self-hosted-linux-mac-selinux-apparmor-smack-guide/ <p>Mandatory Access Control (MAC) is the most powerful security mechanism available on Linux. Unlike Discretionary Access Control (DAC), where file owners decide who gets access, MAC enforces system-wide security policies that even root cannot bypass. For self-hosted servers running critical infrastructure — web applications, databases, mail servers, and container workloads — implementing a MAC framework is essential defense-in-depth.</p>