@doenietzomoeilijk Not comparable to SIP…
With SELinux, the admin can write their own SELinux policies, and managing roles, to set their system as they need… There's isn't any 3rd party forcing their policies upon your system.
Meaning if you need to do a certain task (e.g. authorising a process to access a certain directory, assigning a role to a user…), you don't have to *disable* SELinux. As the admin, you can configure SELinux to allow you to do so.
This is my personal microblog. It's filled with my fun, joy and silliness.