Fedora Linux Support Community & Resources Center

Home Forums Posting Rules Linux Help Fedora Set-Up Guides Ask Fedora Fedora Project
Go Back   FedoraForum.org > Fedora 17/18 > Security and Privacy
Reload this Page SELinux MLS and apache
FedoraForum Search
Forgot Password? Join Us!
Register All Albums FAQ Search Today's Posts Mark Forums Read

Security and Privacy Sadly, malware, spyware, hackers and privacy threats abound in today's world. Let's be paranoid and secure our penguins, and slam the doors on privacy exploits.

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 12th July 2012, 05:31 PM
dania88 Offline
Registered User
  
Join Date: Jul 2012
Location: Khust
Posts: 1
linuxfirefox
SELinux MLS and apache
Hello guys !!!

Last time I started to study SELinux and its mls policy. Probably someone of you deals with this. There is an apache server and a remote host. On the both systems (fedora 15) selinux mls policy is installed. Security context is transmitted by netlabel tool. Apache server contains a couple of html pages with different security contexts(i.e. security levels). Scenario: On the remote host client runs web browser with a certain sec. level and according to this level he is able to browse only pages on the server with security level <= his web browser's level(i.e. his clearance). In other words, no read up rule by Bell Lapudula model.

I want to implement such a system, but I have no enough information for this. Google provides with a couple of articles related to it as this for example http://code.google.com/p/sepgsql/wik...e_SELinux_plus , but most of them are relatevely old (2009 year of posting) and is not enough clear how to configure it.

Thank you for any help.
Reply With Quote
  #2  
Old 12th July 2012, 08:34 PM
SlowJet Offline
Registered User
  
Join Date: Jan 2005
Posts: 5,002
linuxfirefox
Re: SELinux MLS and apache
Some experts hang out on the selinux mailing list.
You can get to the mailing lists thru
fedoraproject.org - go to bottom, find mailing lists link.
That link shows a page with a link to the middle of the page for mailing lists.
Schrool until you see the selinux mail list/

Also, some of these types of access denails can be done inside apache configuration.

g/l

SJ
__________________
Do the Math
Reply With Quote
Reply

Tags
apache, blp, mls, security level, selinux

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
SELinux rights for Apache Segment Servers & Networking 2 16th July 2010 09:16 PM
SELinux & Apache Issue intrealm Using Fedora 2 30th October 2007 12:49 PM
SELINUX and home dir on apache emamm Security and Privacy 6 26th July 2006 12:08 AM
SELinux. Apache gatesession Servers & Networking 1 20th December 2005 05:10 AM


Current GMT-time: 03:37 (Sunday, 26-05-2013)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.
Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

 FedoraForum is Powered by RedHat