Search found 8 matches

by mainziman
2016/08/26 19:59:13
Forum: CentOS 6 - Security Support
Topic: selinux+ping+apache
Replies: 3
Views: 6827

Re: selinux+ping+apache

try this ... module httpd_icmp 1.0; require { type httpd_sys_script_t; class capability { setuid net_raw }; class netlink_socket create; class rawip_socket { getopt create setopt write read }; } #============= httpd_sys_script_t ============== allow httpd_sys_script_t self:capability { setuid net_ra...
by mainziman
2016/08/20 12:19:14
Forum: CentOS 6 - Software Support
Topic: Router/Firewall Box with Apache and shutdown/restart via web interface
Replies: 1
Views: 1006

Router/Firewall Box with Apache and shutdown/restart via web interface

I've got the following a box (mini-pc) with latest CentOS 6.8; everything works fine; configuration is done via SSH; but there are just a few things that are needed to be possible via web interface: shutdown and restart the box for the other things I wanted to have viewable via web I've got a soluti...
by mainziman
2015/12/30 19:49:08
Forum: CentOS 6 - Software Support
Topic: ClamAV from EPEL repository
Replies: 1
Views: 950

ClamAV from EPEL repository

Hello,

I'm missing libclamunrar, that is not installed when install yum install clamav from the EPEL repository; why?

Thanks,
Walter

I'm using CentOS 6.7
by mainziman
2014/03/31 05:13:36
Forum: CentOS 6 - Security Support
Topic: ip6tables
Replies: 1
Views: 2213

Re: ip6tables

does anybody have a hint/solution?
by mainziman
2014/03/25 06:48:16
Forum: CentOS 6 - Security Support
Topic: TCP wrappers (hosts.allow/deny): do you use them anymore?
Replies: 9
Views: 5992

Re: TCP wrappers (hosts.allow/deny): do you use them anymore

using hosts.allow/hosts.deny as secondary to iptables
hoste that are not allowed to ssh my virtual server are blocked in hosty.deny
IP ranges of my ISP are in hosts.allow, to prevent myself of being locked out ...
by mainziman
2014/03/19 10:59:11
Forum: CentOS 6 - Security Support
Topic: ip6tables
Replies: 1
Views: 2213

ip6tables

Hello, I use a sixxs-IPv6-Tunnel, and use a CentOS 6.5 VM where this tunnel is configured - let's call it "Tunnel-Gateway-VM"; my complete Firewall : specific (configuration) details sixxs-subnet stands for the 2001:xxxx:xxxx:xxxx IPv6 Subnet that is routed through the SixXS-IPv6-Tunnel sixxs-tunnel...
by mainziman
2014/03/12 17:10:42
Forum: CentOS 6 - General Support
Topic: sudo mount to only allowed locations
Replies: 3
Views: 1016

Re: sudo mount to only allowed locations

Hi, yes of course, the user should umount them to, these is just a second line in the file in directory /etc/sudoers.d %user ALL=/bin/umount /mnt/sub/* what would the line(s) in /etc/fstab look like, and are these be mounted automatically? my /etc/fstab looks like this: UUID=0b9dc3fa-50ad-4afb-9957-...
by mainziman
2014/03/11 20:31:50
Forum: CentOS 6 - General Support
Topic: sudo mount to only allowed locations
Replies: 3
Views: 1016

sudo mount to only allowed locations

Hello, just found out, when creating /etc/sudoers.d/0mount with the following content: %user ALL=/bin/mount -t cifs -o uid=500\,* //ip-addr/* /mnt/sub/* (of course user and 500 matches) the user is allowed to mount any share of the windows host with ip-addr on just a specific location of mount point...

Go to advanced search