[Cialug] CentOS httpd
Scott Yates
Scott at yatesframe.com
Wed Nov 30 12:19:22 CST 2016
My normal day would be MUCH better if it could include -nap mode. 8)
On Wed, Nov 30, 2016 at 11:05 AM, Kyle Hamilton <khamil8686 at gmail.com>
wrote:
> Yes, it was originally from some website example that I copy-pasted. I
> never really looked into it since it worked for what I needed. Then I got
> used to the command and it's output so it became habit, lol. I guess I
> could change my normal to -nap since I usually grep for a port or program
> name. :)
>
>
> Kyle
>
>
>
> On 11/30/2016 10:59 AM, Todd Walton wrote:
>
>> On Tue, Nov 8, 2016 at 12:12 PM, Kyle Hamilton <khamil8686 at gmail.com>
>> wrote:
>>
>> Yes, there is an selinux type for ports... For example, if the ssh port
>>> is changed you also need to change the port type to ssh_port_t. An
>>> example
>>> command is in the sshd config file, just grep for semanage in the
>>> /etc/ssh/sshd_config file. You can see the selinux info for ports using
>>> netstat -Z (I use a standard command of netstat -naplZ)
>>>
>>> Interestingly, my version of the netstat man page (from net-tools
>> 2.10-alpha) does not document -Z, but it works. Also, -a and -l seem to
>> contradict each other:
>>
>> -l, --listening
>> Show only listening sockets. (These are omitted by default.)
>> -a, --all
>> Show both listening and non-listening (for TCP this means
>> established connections) sockets. With the --interfaces option, show
>> interfaces that are not up
>>
>> --
>> Todd
>> _______________________________________________
>> Cialug mailing list
>> Cialug at cialug.org
>> http://cialug.org/mailman/listinfo/cialug
>>
>
> _______________________________________________
> Cialug mailing list
> Cialug at cialug.org
> http://cialug.org/mailman/listinfo/cialug
>
More information about the Cialug
mailing list