February 2020
Intermediate to advanced
666 pages
15h 45m
English
Content preview from Mastering Linux Security and Hardening - Second Edition
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Hands-on lab – SELinux type enforcement
In this lab, you'll install the Apache web server and the appropriate SELinux tools. You'll then view the effects of having the wrong SELinux type assigned to a web content file if you're ready, let's go:
- Install Apache, along with all the required SELinux tools on CentOS 7:
sudo yum install httpd setroubleshoot setools policycoreutils policycoreutils-python
On CentOS 8, use the following command:
sudo dnf install httpd setroubleshoot setools policycoreutils policycoreutils-python-utils
- Activate setroubleshoot by restarting the auditd service:
sudo service auditd restart
- Enable and start the Apache service and open port 80 on the firewall:
sudo systemctl enable --now httpdsudo firewall-cmd --permanent ...