SELinux Workshop Redux Jamie Duncan, Red Hat RVaLUG 19 April 2014
|
|
- Maud Lawson
- 5 years ago
- Views:
Transcription
1 SELinux Workshop Redux Jamie Duncan, Red Hat RVaLUG 19 April 2014 Introduction The expectation is that you will either have a virtual machine to use, or that you will revert any changes made to your machine in this lab. Instructions will be given for reverting any changes. Lab 1 Log in as a regular (non-root) user. Determine the SELinux mode by issuing the command: getenforce Determine your SELinux context by running the command: id Z What is your SELinux user? Role? Type? Check the SELinux context of /sbin/mingetty. Issue the command: ls Z /sbin/mingetty What is it's context? Determine the SELinux context of /etc/init/tty.conf by issuing the command: ls Z /etc/init/tty.conf What is it's context? Determine the SELinux context of the mingetty process by running the command: ps axz grep mingetty What is it's context?
2 What is the the context for /usr/sbin/httpd? (Hint: yum y install httpd if needed) Make sure httpd starts at boot time. (Hint: chkconfig httpd on) How about for the httpd process? (Hint: service httpd start if needed) Install the setroubleshoot and setroubleshoot-server RPMs and reboot: yum y install setroubleshoot setroubleshoot server && init 6 What is the label for tcp port 80? Issue the command: semanage port l grep 80 Lab 2 As root, open a terminal and make sure Apache httpd is not running: service httpd stop As root, start netcat listening on port 80: nc l 80 What is the context of this listening service? ps axz grep nc Quit nc (ctrl+c). Now start up httpd: service httpd start What is the context of httpd? _ Is the context of nc listening on port 80 the same as httpd listening on port 80? What do think that does to security?
3 Lab 3 What is the label for files in /sbin? (Hint: look in /etc/selinux/targeted/contexts/files/file_contexts). What is the label for /sbin/fsck? Lab 4 As root, create root.html file in your home directory. echo This is my root.html > /root/root.html What is the label for this root.html file? ls lz root.html As root, either stop iptables or allow http traffic to your system: service iptables stop or iptables I INPUT p tcp dport 80 j ACCEPT As root, move (don't copy) the root.html file to /var/www/html. Open a web browser and access the web site running on your machine (e.g. Can you see the web page? What does the apache log file say? (Hint: look at /var/log/httpd/error_log) What are the permissions on /var/www/html/root.html? Are permissions blocking the file? What is the label for /var/www/html? How would you set /var/www/html/root.html with the same label?
4 Once you correct the context on /var/www/html/root.html, can you see the page in your web browser? Lab 5 If you don't have a regular user account for this lab, create one. (Hint: useradd [username] and then passwd [username]). As root, enable Apache to access users' home directories. Change UserDir disabled to UserDir public_html in /etc/httpd/conf/httpd.conf. Restart the web server: service httpd restart As the user, create a directory called /home/[username]/public_html Allow access to the httpd executable for that home directory: chmod o+x /home/[username] Create an index.html file: echo This is my home page > /home/[username]/public_html/index.html Open the user's page with your web browser. Something similar to: firefox Can you see the page with your web browser? What does /var/log/httpd/error_log show you? What does /var/log/audit/audit.log show you? What does /var/log/messages show you?
5 Run the command you see in /var/log/messages. It should be similar to: sealert l ada a53 43cc a57a 7e3d8398ffda What does it tell you to do to allow access? Run that command. Try to access the web page again: firefox What happened? _ Lab 6 You'll create a virtual web site called dummy-host.example.com in /foo/bar/ First, create the directory /foo/bar. As root: mkdir p /foo/bar Add a stanza to /etc/httpd/conf/httpd for the dummy-host.com site: <VirtualHost *:80> ServerAdmin webmaster@dummy host.example.com DocumentRoot /foo/bar ServerName dummy host.example.com ErrorLog logs/dummy host.example.com error_log CustomLog logs/dummy host.example.com access_log common </VirtualHost> Create an index.html file: echo dummy host > /foo/bar/index.html Add dummy-host.example.com to the /etc/hosts file. It will look something like this: dummy host.example.com dummy host Restart httpd: service httpd restart
6 What was the result? What do you see in /var/log/messages? What does sealert -l tell you? What label should you apply to /foo/bar so Apache will start? Where might you look for a good example? Where would you look to see the syntax for the regular expression we need to use? Use semanage to set the correct context for /foo and everything under it: semanage fcontext a t httpd_sys_content_t /foo(/.*)? Try to start the web server again: service httpd restart Did it work? Why or why not? Set the correct context on /foo: restorecon vr /foo/ Restart the web server. What was the result? Open Can you see the contents of index.html? What files would you look for to see what SELinux changes have been made on a system via booleans or semanage? Remove the semanage fcontext rule: semanage fcontext d t httpd_sys_content_t "/foo(/.*)?" Set the /foo directory back to default context:
7 restorecon vr /foo/ Lab 7 As root, create a directory into which we'll write policy files. mkdir /root/selinux Restart the httpd server. It should fail. Use audit2why to see why the web server won't serve up content from /foo grep foo /var/log/audit/audit.log audit2why What is missing? _ Change directories into /root/selinux. Use audit2allow to create a policy to allow httpd to access /foo grep foo /var/log/audit/audit.log audit2allow al M foolocal Look at the contents of foolocal.te. It is allowing processes labeled with the httpd_t type search access to all directories with the default_t type. What are the security implications of this? Install the policy by running: semodule i foolocal.pp Restart httpd. Does it see /foo? Why or why not? _ Create a second policy foo2 by running: audit2allow al M foo2local Inspect the foo2local.te file. This time, httpd_t processes can get all attributes of all directories with the default_t label. Is this a good idea? Install the policy by typing: semodule i foo2local.pp Restart httpd. Does it start?
8 _ Does the web page splash screen say dummy-host? If not, there is still a problem. Remove the two foo policies, they're incomplete: semodule r foo2local semodule r foolocal Lab 8 Temporarily put SELinux into permissive mode from the command line: setenforce 0 Restart httpd: service httpd restart Did it start? Can you see dummy-host when you open the page with a web browser? Use audit2allow to generate a final policy, and install it with semodule: audit2allow al M foolocal3 semodule i foolocal3.pp Look at the foolocal3.te file. What access is granted to processes with the httpd_t type to directories labeled with the default_t type? What access is granted to processes with the httpd_t type to files labeled with the default_t type? What are the security implications of this? Was using audit2allow a good idea for overcoming this SELinux problem? _ If you are connecting to your VM via ssh, install the xorg-x11-xauth RPM. yum y install xorg x11 xauth Install the policycoreutils-gui package:
9 yum y install policycoreutils gui Launch system-config-selinux and change the current enforcing mode from permissive to enforcing. Exit the tool. Verify the current level from the command line: getenforce If it is not enforcing, go back and fix it. Restart the web server, and verify that you can still see the dummy-host splash page. Launch system-config-selinux and select Policy Module from the left pane. Scroll down to foolocal3 and remove it. Choose Booleans in the left pane. In the search bar in the right pane, type in home and hit enter. Observe that the httpd is allowed to read home directories that's there from Lab 5. Remove the entries from the /etc/httpd/conf/httpd.conf for the dummy-host site
SELinux Workshop Redux. Jamie Duncan, Senior Technical Account Manager RVaLUG - 18 April 2014
SELinux Workshop Redux Jamie Duncan, Senior Technical Account Manager RVaLUG - 18 April 2014 Red Hat and SELinux Red Hat leads the way in SELinux development. John Dennis, Ulrich Drepper, Steve Grubb,
More informationDemystifying SELinux:
Demystifying SELinux: What is it trying to tell me? David Quigley dpquigl@davequigley.com 1 What is Access Control? A system for restricting who or what is allowed to access specific resources and how
More informationSELinux For Mere Mortals
SELinux For Mere Mortals (Or, Don't Turn It Off ) Dan Walsh Principal Software Engineer, Red Hat Thomas Cameron, RHCA Managing Solutions Architect, Red Hat June 23rd, 2010 Agenda About Us What is SELinux?
More informationSECURITY ENHANCED LINUX FOR MERE MORTALS Thomas Cameron, RHCA, RHCSS, RHCDS, RHCVA, RHCX Chief Architect, Central US
SECURITY ENHANCED LINUX FOR MERE MORTALS Thomas Cameron, RHCA, RHCSS, RHCDS, RHCVA, RHCX Chief Architect, Central US Twitter: @thomasdcameron thomas@redhat.com Agenda About Us What is SELinux? Where did
More informationSELinux Basics. Clint Savage Fedora Ambassador. Fedora Classroom November 9, 2008
SELinux Basics Clint Savage Fedora Ambassador Fedora Classroom November 9, 2008 What is SELinux? Another layer of security Created by the NSA / Red Hat Helps add to the multiple layers of defense Generally
More informationSELINUX FOR MERE MORTALS
SELINUX FOR MERE MORTALS Thomas Cameron, Chief Architect, Red Hat 06.27.12 RHCA, RHCSS, RHCDS, RHCVA, RHCX Agenda About Us What is SELinux? Where did it come from? DAC vs. MAC So How Does SELinux Work?
More informationSECURITY ENHANCED LINUX FOR MERE MORTALS
SECURITY ENHANCED LINUX FOR MERE MORTALS Or, Don t Turn It Off! Thomas Cameron, RHCA, RHCSS, RHCDS, RHCVA, RHCX Digital Transformation Strategist, Red Hat May 3rd, 2017 AGENDA Agenda About Us What is SELinux?
More informationSELINUX FOR MERE MORTALS
SELINUX FOR MERE MORTALS (Or, Don't Turn It Off ) Thomas Cameron, RHCA, RHCDS, RHCVA, RHCSS, RHCX Managing Solutions Architect, Red Hat Wednesday, May 4th, 2011 Agenda About Us What is SELinux? About Us
More informationLAMP Stack with VirtualHosts On Centos 6.x
LAMP Stack with VirtualHosts On Centos 6.x This article illustrates how to install the Apache Mysql PHP Stack on Centos 6.x. Additionally, with this configuration, you can serve Multiple Domains using
More informationSELinux. Thorsten Scherf. Red Hat EMEA. October 2015
SELinux Thorsten Scherf Red Hat EMEA October 2015 What is wrong with UNIX security? Programs have full control over the access given to files they create (Discretionary Access Control DAC) Therefore no
More information2/26/13. Hands-on SELinux: A Practical Introduction. Roadmap. SELinux Tools. Security Training Course. Day 1: Day 2: GUI
Hands-on SELinux: A Practical Introduction Security Training Course Dr. Charles J. Antonelli The University of Michigan 2013 Day 1: Why SELinux? Overview of SELinux Using SELinux SELinux Permissive Domains
More informationRed Hat Enterprise Linux 6 Managing Confined Services. Guide to configuring services under control of SELinux
Red Hat Enterprise Linux 6 Managing Confined Services Guide to configuring services under control of SELinux Managing Confined Services Red Hat Enterprise Linux 6 Managing Confined Services Guide to configuring
More informationSELinux Updates. Thorsten Scherf Senior Consultant. Red Hat Global Professional Services Berlin / Germany
SELinux Updates Thorsten Scherf Senior Consultant Red Hat Global Professional Services 01.12.2011 Berlin / Germany Agenda SELinux review What happened to strict policy Policy customization and development
More informationConfiguring Multiple Instances of Railo on Linux
Configuring Multiple Instances of Railo on Linux The purpose of this guide is to explain how to set up multiple instances of Railo on a single instance of Linux. The instances can then be used for redundancy,
More information9/18/14. Hands-on SELinux: A Practical Introduction. Roadmap. SELinux Tools. Security Training Course. Day 1: Day 2: GUI
Hands-on SELinux: A Practical Introduction Security Training Course Dr. Charles J. Antonelli The University of Michigan 2014 Day 1: Why SELinux? Overview of SELinux Using SELinux SELinux Permissive Domains
More informationCSN09101 Networked Services. Module Leader: Dr Gordon Russell Lecturers: G. Russell
CSN09101 Networked Services Week 8: Essential Apache Module Leader: Dr Gordon Russell Lecturers: G. Russell This lecture Configuring Apache Mod_rewrite Discussions Configuring Apache Apache Very well known
More informationManaging Selinux on CentOS with your cfgmgmt solution
Managing Selinux on CentOS with your cfgmgmt solution (puppet and ansible covered) Fabian Arrotin arrfab@centos.org /whois arrfab Belgian guy SysAdmin by choice CentOS (ab)user for a long time CentOS Project
More informationManaging SELinux in the Enterprise
Managing SELinux in the Enterprise Daniel J Walsh Senior Principal Software Engineer @rhatdan, danwalsh.livejournal.com, dwalsh@redat.com Jun 12 2013 How to manage SELinux in a large environment? Move
More informationSetting up the Apache Web Server
1 Setting up the Apache Web Server The Apache Web Server (Hyper Text Transfer Protocol) is the most popular web server available. The project gained popularity with Linux in the 1990 s as they teamed up
More informationVCP-DCV5, OCP (DBA), MCSA, SUSE CLA, RHCSA-7]
Alternate Titles: APACHE V-HOST SETUP Author: Muhammad Zeeshan Bhatti [LPI, VCP-DCV5, OCP (DBA), MCSA, SUSE CLA, RHCSA-7] (http://zeeshanbhatti.com) (admin@zeeshanbhatti.com) APACHE V-HOST SETUP [root@zeeshanbhatti
More information3/15/12. Hands-on SELinux: A Practical Introduction. Roadmap. SELinux Tools. Security Training Course. Day 1: Day 2: GUI
Hands-on SELinux: A Practical Introduction Security Training Course Dr. Charles J. Antonelli The University of Michigan 2012 Day 1: Why SELinux? Overview of SELinux Using SELinux SELinux Permissive Domains
More informationEX200 Q&A. DEMO Version
Red Hat Certified System Administrator (RHCSA) Exam Q&A DEMO Version Copyright (c) 2015 Chinatag LLC. All rights reserved. Important Note Please Read Carefully For demonstration purpose only, this free
More information10/23/12. Fundamentals of Linux Platform Security. Linux Platform Security. Roadmap. Security Training Course. Module 4 Introduction to SELinux
Fundamentals of Linux Platform Security Security Training Course Dr. Charles J. Antonelli The University of Michigan 2012 Linux Platform Security Module 4 Introduction to SELinux Roadmap Why SELinux? Overview
More informationMANDATORY ACCESS CONTROL SECURITY ENHANCED LINUX (SELINUX)
OPERATING SYSTEM SECURITY GUEST LECTURE MANDATORY ACCESS CONTROL SECURITY ENHANCED LINUX (SELINUX) PATRICK UITERWIJK PUITERWIJK@REDHAT.COM / PATRICK.UITERWIJK.ORG GPG KEY: 4096R/0X9AB51E50 0 MANDATORY
More information[ Due: N.A ] [ Points: PRICELESS ] [ Date: 2/9/2016] [ Goings, Jesse ] Computer Network Specialist Center For Arts and Technology College Kelowna BC
[UNIT 1]: This course will be implemented strictly with Linux operating systems Upcoming Topics: MySQL PHP Apache Books required for classes LPICK Foundations of CentOS Apache Apache
More informationCIS 192 Linux Lab Exercise
CIS 192 Linux Lab Exercise Lab 8: Samba Spring 2009 Lab 8: Samba The purpose of this lab is to share files among Windows and Linux hosts on a common network. The goal is to browse directories on the Linux
More informationVendor: RedHat. Exam Code: EX300. Exam Name: Red Hat Certified Engineer (RHCE) Version: Demo
Vendor: RedHat Exam Code: EX300 Exam Name: Red Hat Certified Engineer (RHCE) Version: Demo Exam Times: RHCE: Two hours. Pass Scores: Total 300 points. Pass at 210 points. Exam Environment: Take examinations
More informationSELinux Introduction. Jason Zaman FOSSASIA 2017 March 17th - 19th blog.perfinion.com
SELinux Introduction Jason Zaman FOSSASIA 2017 March 17th - 19th blog.perfinion.com Overview 1. Who am I? 2. What is SELinux? 3. DAC vs MAC 4. Type Enforcement 5. Labels 6. Sometimes SELinux denies badness
More informationThis tutorial will guide you how to setup and run your own minecraft server on a Linux CentOS 6 in no time.
This tutorial will guide you how to setup and run your own minecraft server on a Linux CentOS 6 in no time. Running your own server lets you play together with your friends and family with your own set
More informationTungsten Dashboard for Clustering. Eric M. Stone, COO
Tungsten Dashboard for Clustering Eric M. Stone, COO In this training session 1. Tungsten Dashboard Welcome 2. Tungsten Dashboard Overview 3. Tungsten Dashboard Prerequisites 4. Tungsten Dashboard Security
More informationEX200 EX200. Red Hat Certified System Administrator RHCSA
EX200 Number: EX200 Passing Score: 800 Time Limit: 120 min File Version: 14.0 http://www.gratisexam.com/ EX200 Red Hat Certified System Administrator RHCSA EX200 QUESTION 1 Configure your Host Name, IP
More informationRHCE BOOT CAMP. Filesystem Administration. Wednesday, November 28, 12
RHCE BOOT CAMP Filesystem Administration PARTITIONING What is partitioning? Splitting up a hard drive into organizable chunks Why? Isolates filesystem corruption Simplifies/speeds backups Allows optimizing
More informationRed Hat JBoss Core Services
Red Hat JBoss Core Services 2.4.29 Apache HTTP Server Installation Guide For use with Red Hat JBoss middleware products. Last Updated: 2018-08-15 Red Hat JBoss Core Services 2.4.29 Apache HTTP Server
More informationL.A.M.P. Stack Part I
L.A.M.P. Stack Part I By George Beatty and Matt Frantz This lab will cover the basic installation and some configuration of a LAMP stack on a Ubuntu virtual box. Students will download and install the
More informationbash Scripting Introduction COMP2101 Winter 2019
bash Scripting Introduction COMP2101 Winter 2019 Command Lists A command list is a list of one or more commands on a single command line in bash Putting more than one command on a line requires placement
More informationRed Hat.Actualtests.EX200.v by.Dixon.22q. Exam Code: EX200. Exam Name: Red Hat Certified System Administrator (RHCSA) Exam
Red Hat.Actualtests.EX200.v2014-12-02.by.Dixon.22q Number: EX200 Passing Score: 800 Time Limit: 120 min File Version: 14.5 http://www.gratisexam.com/ Exam Code: EX200 Exam Name: Red Hat Certified System
More informationEX200 - EX200 Red Hat Certified System Administrator (RHCSA) Exam
EX200 - EX200 Red Hat Certified System Administrator (RHCSA) Exam 1.CORRECT TEXT Add users: user2, user3. The Additional group of the two users: user2, user3 is the admin group Password: redhat Answer:
More informationSetting Up PHPlist (Open-Source Newsletter Manager)
By Oliver Meyer Published: 2008-05-25 18:48 Setting Up PHPlist (Open-Source Newsletter Manager) Version 1.0 Author: Oliver Meyer Last edited 04/23/2008 This document
More information[UNIT 1 <Continued>]: <Understanding Apache>
[UNIT 1 ]: Directives DocumentRoot This directive specifies the root directory of the server s content hierarchy, Syntax DocumentRoot dir Where dir is the directory s
More informationEX200.Lead2pass.Exam.24q. Exam Code: EX200. Exam Name: Red Hat Certified System Administrator RHCSA. Version 14.0
EX200.Lead2pass.Exam.24q Number: EX200 Passing Score: 800 Time Limit: 120 min File Version: 14.0 http://www.gratisexam.com/ Exam Code: EX200 Exam Name: Red Hat Certified System Administrator RHCSA Version
More informationExam Questions EX200
Exam Questions EX200 EX200 Red Hat Certified System Administrator (RHCSA) Exam http://www.2passeasy.com/dumps/ex200/ 1.CORRECT TEXT Add users: user2, user3. The Additional group of the two users: user2,
More informationEX200 Exam Questions Demo https://www.surepassexam.com/ex200-exam-dumps.html. Red Hat. Exam Questions EX200
Red Hat Exam Questions EX200 EX200 Red Hat Certified System Administrator (RHCSA) Exam Version:Demo 1.CORRECT TEXT Add users: user2, user3. The Additional group of the two users: user2, user3 is the admin
More informationSeltestengine EX200 24q
Seltestengine EX200 24q Number: EX200 Passing Score: 800 Time Limit: 120 min File Version: 22.5 http://www.gratisexam.com/ Red Hat EX200 Red Hat Certified System AdministratorRHCSA Nicely written Questions
More informationAndroid Things Security Research in Developer Preview 2
1 Monthly Research 2017.2 Android Things Security Research in Developer Preview 2 E-Mail: research-feedback[at]ffri.jp Twitter: @FFRI_Research FFRI, Inc. http://www.ffri.jp/en Table of Contents Background
More informationLinux Essentials Objectives Topics:
Linux Essentials Linux Essentials is a professional development certificate program that covers basic knowledge for those working and studying Open Source and various distributions of Linux. Exam Objectives
More informationAn internal CA that is part of your IT infrastructure, like a Microsoft Windows CA
Purpose This document will describe how to setup to use SSL/TLS to provide encrypted connections to the. This document can also be used as an initial point for troubleshooting SSL/TLS connections. Target
More informationFun with SELinux. Writing SELinux Policy Permissive Domains Real bugs. Miroslav Grepl Presented by
Fun with SELinux Writing SELinux Policy Permissive Domains Real bugs Presented by Miroslav Grepl mgrepl@redhat.com Today's Topics 1. Show process of writing a policy - understanding basics of SELinux ==
More informationConfining Spacewalk with SELinux
Confining Spacewalk with SELinux Jan Pazdziora Principal Software Engineer Satellite Engineering, Red Hat Open Source Conference 2011 19 th April 2011 Prague, Czech Republic What is Spacewalk? System management
More informationRed Hat Enterprise Linux 6
Red Hat Enterprise Linux 6 Security-Enhanced Linux User Guide Last Updated: 2017-10-20 Red Hat Enterprise Linux 6 Security-Enhanced Linux User Guide Mirek Jahoda Red Hat Customer Content Services mjahoda@redhat.com
More informationCheck the FQDN of your server by executing following two commands in the terminal.
LDAP or Lightweight Directory Access Protocol, is a protocol designed to manage and access related information in a centralized, hierarchical file and directory structure. An LDAP server is a non-relational
More informationWA2572 Introduction to Responsive Web Development for Mac. Classroom Setup Guide. Web Age Solutions Inc.
WA2572 Introduction to Responsive Web Development for Mac Classroom Setup Guide Web Age Solutions Inc. 1 Table of Contents Part 1 - Minimum Hardware Requirements...3 Part 2 - Minimum Software Requirements...3
More informationRed Hat Satellite 6.3
Red Hat Satellite 6.3 Puppet Guide A guide to building your own Puppet module and importing it into Satellite 6 Last Updated: 2018-06-15 Red Hat Satellite 6.3 Puppet Guide A guide to building your own
More informationVendor: RedHat. Exam Code: EX200. Exam Name: Red Hat Certified System Administrator - RHCSA. Version: Demo
Vendor: RedHat Exam Code: EX200 Exam Name: Red Hat Certified System Administrator - RHCSA Version: Demo EX200 Exam A QUESTION NO: 1 CRECT TEXT Configure your Host Name, IP Address, Gateway and DNS. Host
More informationActual4Test. Actual4test - actual test exam dumps-pass for IT exams
Actual4Test http://www.actual4test.com Actual4test - actual test exam dumps-pass for IT exams Exam : RH133 Title : Red Hat Linux System Administration Vendor : RedHat Version : DEMO Get Latest & Valid
More informationa. puppet should point to master (i.e., append puppet to line with master in it. Use a text editor like Vim.
Head Node Make sure that you have completed the section on Precursor Steps and Storage. Key parts of that are necessary for you to continue on this. If you have issues, please let an instructor know to
More informationProtect your server with SELinux on SUSE Linux Enterprise Server 11 SP Sander van Vugt
Protect your server with SELinux on SUSE Linux Enterprise Server 11 SP Sander van Vugt Instructor, Consultant and Author Sandervanvugt.nl About Sander van Vugt Trainer, consultant and author Doing much
More informationDAY 2! Logs, Aliases, Redirects, Rewrites, and More! Oh My! Thursday, November 8, 12
DAY 2! Logs, Aliases, Redirects, Rewrites, and More! Oh My! VIRTUAL HOSTING OVERVIEW Virtual Hosting is an extremely popular feature of the Apache webserver. Virtual Hosting allows Apache to serve up more
More informationGenesys Administrator Extension Deployment Guide. Prerequisites for Genesys Administrator Extension Modules
Genesys Administrator Extension Deployment Guide Prerequisites for Genesys Administrator Extension Modules 7/1/2018 Prerequisites for Genesys Administrator Extension Modules Contents 1 Prerequisites for
More informationBraindumps EX200 15q
Braindumps EX200 15q Number: EX200 Passing Score: 800 Time Limit: 120 min File Version: 22.5 http://www.gratisexam.com/ Red Hat EX200 Red Hat Certified System AdministratorRHCSA This is the best VCE I
More informationCertification. The HTTP Service
Certification The HTTP Service UNIT 5 The HTTP Service 1 Objectives Learn the major features of the Apache HTTP server Be able to configure important Apache parameters Learn per-directory configuration
More information1. Open VirtualBox and start your linux VM. Boot the machine and log in with the user account you created in Lab #1. Open the Terminal application.
CIT 210L Name: Lab #2 1. Open VirtualBox and start your linux VM. Boot the machine and log in with the user account you created in Lab #1. Open the Terminal application. 2. Listing installed packages -
More informationA PAtCHy server: developed by the Apache group formed 2/95 around by a number of people who provided patch files for NCSA httpd 1.3 by Rob McCool.
Outline q Introduction to Apache httpd web server q Basic Compilation, Installation and Configuration q Apache File system q Apache Logging & Status q Security & Performance Features q Virtual Hosting
More informationModSecurity2 Installation, and Configuration
ModSecurity2 Installation, and Configuration Hi, I actually searched a lot of times through Mr. Google looking for a ModSecurity2 HOWTO, but unfortunately I didn't find any. So I decided to write this
More informationApache + PHP + MySQL. bdnog November 2017 Dhaka, Bangladesh
Apache + PHP + MySQL bdnog7 18-22 November 2017 Dhaka, Bangladesh Outline q Introduction to Apache httpd web server q Basic Compilation, Installation and Configuration q Apache File system q Apache Logging
More informationAccess Control. SELinux. Mestrado Integrado em Engenharia Informática e Computação. Computer Systems Security
Access Control SELinux Mestrado Integrado em Engenharia Informática e Computação Computer Systems Security João Carlos Eusébio Almeida - up201306301 João Gabriel Marques Costa - up201304197 May 17, 2017
More informationcommands exercises Linux System Administration and IP Services AfNOG 2015 Linux Commands # Notes
Linux System Administration and IP Services AfNOG 2015 Linux Commands # Notes * Commands preceded with "$" imply that you should execute the command as a general user not as root. * Commands preceded with
More informationElastix Smart Assistant
Elastix Smart Assistant Administrator Manual Objective: Allow the administrator to set up the initial configuration of Smart Assistant in an Elastix server. Description: Smart Assistant is an application
More informationCentOS 6.7 with Vault MySQL 5.1
CentOS 6.7 with Vault MySQL 5.1 OS Middleware Installation Web Server, MySQL and PHP Other Middleware Middleware Setup and Configuration Database PHP NetCommons2 Before Install Preparation Installation
More informationAWS/LAMP/Wordpress/Bootstrap Extravaganza. I am determined to make this shit fun.
AWS/LAMP/Wordpress/Bootstrap Extravaganza I am determined to make this shit fun. Agenda What is AWS? Launch your instance Deploy LAMP stack Install Wordpress Bootstrap it Q&A What is AWS? Amazon Web Services
More informationUbuntu Practice and Configuration Post Installation Exercises interlab at AIT Bangkok, Thailand
Ubuntu Practice and Configuration Post Installation Exercises interlab at AIT Bangkok, Thailand 1. Get used to using sudo 2. Create an inst account 3. Learn how to install software 4. Update /etc/apt/sources.list
More informationWhen talking about how to launch commands and other things that is to be typed into the terminal, the following syntax is used:
Linux Tutorial How to read the examples When talking about how to launch commands and other things that is to be typed into the terminal, the following syntax is used: $ application file.txt
More informationGMU Specifications And Installation Procedures Page 1 04/04/08. JBM Gateway Management Utility Server Specifications And Installation Procedures
And Installation Procedures Page 1 04/04/08 JBM Gateway Management Utility Server Specifications And Installation Procedures And Installation Procedures Page 2 04/04/08 GMU Specifications... 3 Recommended
More informationThis material is based on work supported by the National Science Foundation under Grant No
This material is based on work supported by the National Science Foundation under Grant No. 0802551 Any opinions, findings, and conclusions or recommendations expressed in this material are those of the
More informationSputnik Installation and Configuration Guide
Sputnik Installation and Configuration Guide Contents Introduction... 2 Installing Sputnik (Local Linux Machine)... 2 Sputnik Operation... 2 Creating an Amazon EC2 instance for Sputnik... 3 Configuring
More informationTomcat Load Balancing for Progress Application Server for OpenEdge
Tomcat Load Balancing for Progress Application Server for OpenEdge Valery Bashkatov November, 2017 PRAGUE 2017 Good afternoon! My name is Valery Bashkatov. I am working for Progress Technologies company,
More informationAmazon Web Services Hands On S3 January, 2012
Amazon Web Services Hands On S3 January, 2012 Copyright 2011-2012, Amazon Web Services, All Rights Reserved Page 1-8 Table of Contents Overview... 3 Create S3 Bucket... 3 Upload Content and Set Permissions...
More informationHow To Configure Web Access To Subversion Repositories Using Apache
By Edwin Cruz Published: 2007-03-12 17:47 How To Configure Web Access To Subversion Repositories Using Apache This how to is going to describe the steps to get the mod_dav_svn module to work on an Apache
More informationexample.com index.html # vim /etc/httpd/conf/httpd.conf NameVirtualHost :80 <VirtualHost :80> DocumentRoot /var/www/html/
example.com index.html # vim /etc/httpd/conf/httpd.conf NameVirtualHost 192.168.0.254:80 DocumentRoot /var/www/html/ ServerName station.domain40.example.com
More informationMore Raspian. An editor Configuration files Shell scripts Shell variables System admin
More Raspian An editor Configuration files Shell scripts Shell variables System admin Nano, a simple editor Nano does not require the mouse. You must use your keyboard to move around the file and make
More informationGenesys Interaction Recording Solution Guide. WebDAV Requirements
Genesys Interaction Recording Solution Guide WebDAV Requirements 11/24/2017 Contents 1 WebDAV Requirements 1.1 Deploying the WebDAV Server 1.2 Configuring TLS for the WebDAV Server 1.3 Next Step Genesys
More informationCommunication protocols and services
This chapter describes various protocols and that may be enabled on Modberry. SSH Connection SSH service is started up on boot and already preinstalled and configured. You may access your device through
More informationSELinux. Daniel J Walsh SELinux Lead Engineer
SELinux Daniel J Walsh SELinux Lead Engineer 0 Day Exploits Patch Cycle Someone discovers a vulnerability in software Package Maintainer and OS Vendor Notified Fix generated/distributed Fix installed by
More informationRed Hat Enterprise Linux 7
Red Hat Enterprise Linux 7 SELinux User's and Administrator's Guide Basic and advanced configuration of Security-Enhanced Linux (SELinux) Last Updated: 2017-12-22 Red Hat Enterprise Linux 7 SELinux User's
More informationRed Hat Satellite 6.2
Red Hat Satellite 6.2 Puppet Guide A guide to building your own Puppet module and importing it into Satellite 6 Last Updated: 2018-03-08 Red Hat Satellite 6.2 Puppet Guide A guide to building your own
More informationRHCSA BOOT CAMP. Filesystem Administration
RHCSA BOOT CAMP Filesystem Administration PARTITIONING What is partitioning? Splitting up a hard drive into organizable chunks Why? Isolates filesystem corruption Simplifies/speeds backups Allows optimizing
More informationInstall WordPress 3.X In Multi Blog / Multi user mode On localhost
Install WordPress 3.X In Multi Blog / Multi user mode On localhost In this tutorial, we will cover how to setup WordPress as a Multi User /Multi Blog. We ll start by downloading and installing a new version
More informationCS/CIS 249 SP18 - Intro to Information Security
Lab assignment CS/CIS 249 SP18 - Intro to Information Security Lab #2 - UNIX/Linux Access Controls, version 1.2 A typed document is required for this assignment. You must type the questions and your responses
More informationNCS490 Date Assigned: 11/03/14 Ronny L. Bull Due Date: 11/15/14
DNS Lab Write-up Craig T. Ciulla NCS490 Date Assigned: 11/03/14 Ronny L. Bull Due Date: 11/15/14 Setup on Primary VM In this section, I installed and configured all necessary packages on my primary VM
More informationCTEC1863/2017F Lab #11, Part 1 Page 1 of 11. In this lab, we will be installing a popular solution for database-driven web sites.
CTEC1863/2017F Lab #11, Part 1 Page 1 of 11 Lab #11: LAMP In this lab, we will be installing a popular solution for database-driven web sites. This configuration is known as LAMP, an acronym standing for
More informationOpenNebula 4.4 Quickstart CentOS 6 and ESX 5.x. OpenNebula Project
OpenNebula 4.4 Quickstart CentOS 6 and ESX 5.x OpenNebula Project December 17, 2013 Copyright 2013 OpenNebula Project, C12G Labs. All rights reserved. Although the information in this document has been
More informationRed Hat Enterprise Linux 7
Red Hat Enterprise Linux 7 SELinux User's and Administrator's Guide Basic and advanced configuration of Security-Enhanced Linux (SELinux) Last Updated: 2018-04-03 Red Hat Enterprise Linux 7 SELinux User's
More informationHow to Use This Lab Manual
3 Contents How to Use This Lab Manual........................................ 5 Lab 1: Setting Up the Student System.................................. 7 Lab 2: Installing Fedora............................................
More informationPost Ubuntu Install Exercises
Post Ubuntu Install Exercises PacNOG 3 June 18 Rarotonga, Cook Islands 1. Get used to using sudo 2. Create an ainst account 3. Learn how to install software 4. Install gcc and make 5. Learn how to control
More informationHOW TO SECURELY CONFIGURE A LINUX HOST TO RUN CONTAINERS
HOW TO SECURELY CONFIGURE A LINUX HOST TO RUN CONTAINERS How To Securely Configure a Linux Host to Run Containers To run containers securely, one must go through a multitude of steps to ensure that a)
More informationTwiki Installation Notes. Ned Brush 4/13/06. Everything is left as is (default settings) unless specified below. Distribution: RHEL 4
Twiki Installation Notes Ned Brush 4/13/06 Everything is left as is (default settings) unless specified below. Distribution: RHEL 4 1) Here are some good references to follow during the installation: a.
More informationSELi He nux a dlin in F e edora 8 Dan N W am als e h Red D H a at te
SELinux Headline Fedora 8 Dan Walsh Name Red Hat Date SELinux History In Fedora Fedora 2 SELinux Introduced Strict Policy, Disabled, Confine User/Daemons Fedora 3 Targeted Policy, Enabled,
More informationLinux Systems Administration Getting Started with Linux
Linux Systems Administration Getting Started with Linux Network Startup Resource Center www.nsrc.org These materials are licensed under the Creative Commons Attribution-NonCommercial 4.0 International
More informationRedHat EX413 cheat sheet Important things I should remember
Thomas Sluijter 29 October 2017 RedHat EX413 cheat sheet Important things I should remember Here's the important stuff to take away, grouped by the objectives set out by RedHat. OBJECTIVE: "Identify Red
More information(U) Hive Infrastructure Installation and Configuration Guide
(U) Hive Infrastructure Installation and Configuration Guide November 11, 2012 Classified By: 0706993 Reason: 1.4(c) Declassify On: 20371105 Derived From: COL S-06 ii //20371105 November 2012 (U) Table
More informationRH-302. RedHat. Red Hat Certified Engineer on Redhat Enterprise Linux 4 (Labs)
RedHat RH-302 Red Hat Certified Engineer on Redhat Enterprise Linux 4 (Labs) Download Full Version : http://killexams.com/pass4sure/exam-detail/rh-302 local domain and another is cracker.org which is called
More information