Centos 7 Minimal Started Issues Started too
-
I know we.shouldn't and configure it properly but I normally disable selinux
https://www.centos.org/docs/5/html/5.2/Deployment_Guide/sec-sel-enable-disable.htmlBut I am working in learning more once I move my xen host into a central datacentre and start rebuilding my servers like unifi and zabbix
That should get putty working as long as the vm is working on the network correctly
-
@hobbit666 usage of selinux for what purpose? If it is enabled or disabled what is the output?Why we speak about selinux too??
-
To be honest I'm a linux noobie myself I run it put only for certain purposes like zabbix or unifi.
Not sure what SELinux actually is put I think its like a firewall type thing but always causes me problems hence the reason I just disable it.
The reason I mentioned it was it causes me issues so its worth checking if your still having putty issues
-
@hobbit666 OK anyone gives me the proper reason for Selinux usage??@scottalanmiller can u help me for the above questions?
-
@Lakshmana said in Centos 7 Minimal Started Issues Started too:
@hobbit666 OK anyone gives me the proper reason for Selinux usage??@scottalanmiller can u help me for the above questions?
SELinux (or AppArmor on suse and ubuntu) is an important security mechanism to ensure that applications are doing what they are supposed to do rather than doing malicious things. It actually provides a lot of extra security against malware.
-
@scottalanmiller whether it should be enabled by default?
-
Yes. SELinux should not be disabled. Think of it like a firewall.
-
@scottalanmiller difference between iptables and selinux?
-
@Lakshmana said in Centos 7 Minimal Started Issues Started too:
@scottalanmiller difference between iptables and selinux?
IPTables controls networking in and out of the server. SELinux controls applications permissions for actions on the system.
-
Selinux cannot be the problem with SSH, if you haven't changed the SSH server listening port. Selinux has sane defaults for SSH, much less for other application… one of the bigger concern in learning RHEL/CentOS is not how to make everything running, but how to run it with Selinux ENFORCED.
Of course, never disable Selinux. Never.
It's maybe the most valuable security feature on the whole Linux ecosystem.
