≡ Menu

SELinux

What Is SELinux?

What is SELinux? Why should I use SELInux on my CentOS or Red Hat Enterprise Linux server running on IBM hardware?
[click to continue…]

seinfo Command: Query SELinux Policy Under CentOS / RHEL / Linux

How do I query and get information about a policy under SELinux? How do I analyze a binary or a source policy file under SELinux?
[click to continue…]

tar and rsync: Archive and Preserve SELinux Contexts, Extended Attributes, And ACLs

How do I use tar and rsync command that can preserve the ACLs, extended attributes and SELinux contexts under CentOS / RHEL / Fedora Linux server while making backups?
[click to continue…]

HowTo: Temporarily Switch Off SELinux Enforcement

How do I temporarily switch off SELinux enforcement under Red Hat Enterprise Linux server version 6.x using command prompt? How do I turn on SELinux enforcement again?
[click to continue…]

Linux Syslogd: Nothing Gets Logged Using /dev/log And /jail/apache/dev/log

I‘ve configured my Apache in chrooted jail at /jail/apache directory. However, my syslogd is not working and nothing gets logged using /dev/log and /jail/apache/dev/log. How do I fix this problem under CentOS 5.x AMD64 with SELinux?
[click to continue…]

CentOS / Redhat: Turn On SELinux Protection

SELinux enforces the idea that programs should be limited in what files they can access and what actions they can take. However, by default it is turned off under RHEL / CentOS 5.x server? How do I turn it on? How can I enable SELinux on CentOS / RHEL 6 IBM server?
[click to continue…]

Linux Kernel /etc/sysctl.conf Security Hardening

How do I set advanced security options of the TCP/IP stack and virtual memory to improve security and performance of my system? How do I configure Linux kernel to prevent certain kinds of attacks using /etc/sysctl.conf? How do I set Linux kernel parameters?
[click to continue…]

Redhat / CentOS Install Memcached Caching System

How do I install memcached a high-performance, distributed memory object caching system, generic in nature, but intended for use in speeding up dynamic web applications by alleviating database load under CentOS / RHEL / Fedora / Redhat Linux?
[click to continue…]

Squid Listen on Other Port ( Squid Configure Port Listing with SELinux)

My Squid proxy server running on port 3128. Since this is frequently scanned by adversaries looking for proxy servers; I’ve changed port to 10000 and restart squid. But my squid is not working on port # 10000 it only works on port # 3128? How do I force Squid to listen on uncommon port under CentOS Linux v5.3?
[click to continue…]

SELinux Apache Allow To Serve The Contents Of a Loopback Mounted ISO Image

Q. How do I configure CentOS Linux SELinux security to permit httpd 2.2 (Apache web server) to serve the contents of a loopback mounted ISO images located at /var/www/html/lan/iso directory?
[click to continue…]