Search found 4 matches

by nfowar
2006/03/11 21:24:11
Forum: CentOS 4 - Server Support
Topic: How to build a Yum/Up2date Repository
Replies: 4
Views: 572

Re: How to build a Yum/Up2date Repository

There's also been an article on O'Reilly Network on how to build your own repo with patches already applied:
http://www.linuxdevcenter.com/pub/a/linux/2005/02/17/kickstart_updates.html
by nfowar
2006/03/11 21:16:57
Forum: CentOS 4 - Security Support
Topic: Configuring firewall
Replies: 7
Views: 1200

Re: Configuring firewall

The "firewall" GUI is indeed pretty limited. You can only "open" ports globally there. The /etc/hosts file is not such a good idea IMHO, because not all services read this file. You should take a look at the IPTables documentation and tutorials at http://www.netfilter.org and add use a custom iptabl...
by nfowar
2006/03/11 21:11:09
Forum: CentOS 4 - Security Support
Topic: SElinux httpd logs issue? possible change in context in userdirs?- HELP!
Replies: 2
Views: 723

Re: SElinux httpd logs issue? possible change in context in userdirs?- HELP!

There are a couple of httpd-related SELinux options (so called "booleans"), e.g. "httpd_enable_homedirs", which allows Apache to read user's public_html directories. It is off by default, afaik. Perhaps you need to enable it? You can get a list of all options with
# getsebool -a
by nfowar
2006/03/11 21:05:37
Forum: CentOS 4 - Security Support
Topic: Mystery script
Replies: 3
Views: 929

Re: Mystery script

If you're running a web server, you should make sure you run no vulnerable php/perl whatever- CGI applications. The next thing to check is if you have user accounts with weak passwords (name == password or similar) that can be exploited via ssh.

Go to advanced search