I think that one of the problems of SELinux is that it tries to add security to Linux-based systems _tranparently_. Existing software should not need to be modified (at least not in any significant way), and should ideally not even have to know that SELinux is there. And that is to my mind why it is so hard to work out what is going wrong when something does go wrong - the software giving out error messages is not aware of the source of the "problem".
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds