Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
linux_wiki:network_services_overview_apache_web_server [2018/04/07 15:58] billdozor [Host Based] |
linux_wiki:network_services_overview_apache_web_server [2019/05/25 23:50] (current) |
||
---|---|---|---|
Line 44: | Line 44: | ||
* Service agnostic -> [[linux_wiki: | * Service agnostic -> [[linux_wiki: | ||
+ | * **IMPORTANT**: | ||
+ | yum install setools-console | ||
+ | |||
+ | # View all label types | ||
+ | seinfo -t | ||
+ | |||
+ | # Find Apache types | ||
+ | seinfo -t | grep httpd | ||
+ | </ | ||
---- | ---- | ||
Line 132: | Line 141: | ||
Allow access through the firewall | Allow access through the firewall | ||
<code bash> | <code bash> | ||
+ | # Standard http/https ports | ||
firewall-cmd --permanent --add-service=http | firewall-cmd --permanent --add-service=http | ||
firewall-cmd --permanent --add-service=https | firewall-cmd --permanent --add-service=https | ||
+ | firewall-cmd --reload | ||
+ | |||
+ | # Non-standard port example | ||
+ | firewall-cmd --permanent --add-port=8282/ | ||
firewall-cmd --reload | firewall-cmd --reload | ||
</ | </ | ||
Line 142: | Line 156: | ||
<code bash> | <code bash> | ||
< | < | ||
- | #Must be commented out since it unconditionally allows all | ||
- | #Require all granted | ||
| | ||
- | # No tests can fail | + | # Blacklist " |
< | < | ||
- | Require | + | Require |
- | Require not host notmyserver.local | + | Require not host server1 |
</ | </ | ||
| | ||
</ | </ | ||
</ | </ | ||
- | * The above will allow access from myserver.local, | + | * The above will allow access from all hosts except " |
* Must be inside of a < | * Must be inside of a < | ||
+ | |||
===== User Based ===== | ===== User Based ===== | ||