I can imagine that using eBPF will be faster, but I never really imagined SElinux as slow myself. I guess it's because of all the files that need to be opened, and updating policy.
They probably mean for hyper scaling environments SElinux is slow to use, it is designed for traditional servers that don't change often.
It's interesting to see my old pal SElinux be replaced.
BpfJailer: eBPF Mandatory Access Control [pdf]
(lpc.events)57 points by voxadam 12 December 2025 | 4 comments
Comments
They probably mean for hyper scaling environments SElinux is slow to use, it is designed for traditional servers that don't change often.
It's interesting to see my old pal SElinux be replaced.