There's also been an article on O'Reilly Network on how to build your own repo with patches already applied:
http://www.linuxdevcenter.com/pub/a/linux/2005/02/17/kickstart_updates.html
Search found 4 matches
- 2006/03/11 21:24:11
- Forum: CentOS 4 - Server Support
- Topic: How to build a Yum/Up2date Repository
- Replies: 4
- Views: 572
- 2006/03/11 21:16:57
- Forum: CentOS 4 - Security Support
- Topic: Configuring firewall
- Replies: 7
- Views: 1200
Re: Configuring firewall
The "firewall" GUI is indeed pretty limited. You can only "open" ports globally there. The /etc/hosts file is not such a good idea IMHO, because not all services read this file. You should take a look at the IPTables documentation and tutorials at http://www.netfilter.org and add use a custom iptabl...
- 2006/03/11 21:11:09
- Forum: CentOS 4 - Security Support
- Topic: SElinux httpd logs issue? possible change in context in userdirs?- HELP!
- Replies: 2
- Views: 723
Re: SElinux httpd logs issue? possible change in context in userdirs?- HELP!
There are a couple of httpd-related SELinux options (so called "booleans"), e.g. "httpd_enable_homedirs", which allows Apache to read user's public_html directories. It is off by default, afaik. Perhaps you need to enable it? You can get a list of all options with
# getsebool -a
# getsebool -a
- 2006/03/11 21:05:37
- Forum: CentOS 4 - Security Support
- Topic: Mystery script
- Replies: 3
- Views: 929
Re: Mystery script
If you're running a web server, you should make sure you run no vulnerable php/perl whatever- CGI applications. The next thing to check is if you have user accounts with weak passwords (name == password or similar) that can be exploited via ssh.