Provided that you have properly configured
your FTP server, clients should now be able to download files from your computer via the
rsync protocol.
Securing Servers with SELinux
Red Hat, Inc. did a clever thing when it took its first swipe at implementing SELinux in Red Hat
systems. Instead of creating policies to control every aspect of your Linux system, it created a
???targeted??? policy type that focused on securing those services that are most vulnerable to attacks.
The company then set about securing those services in such a way that, if they were compromised,
a cracker couldn??™t compromise the rest of the system as well.
Once you have opened a port in your firewall so others can request a service, then started that
service to handle requests, SELinux can be used to set up walls around that service. As a result, its
daemon process, configuration files, and data can??™t access resources they are not specifically
allowed to access. The rest of your computer, then, is safer.
As Red Hat continues to work out the kinks in SELinux, there has been a tendency for users to see
SELinux failures and just disable the entire SELinux service. However, a better course is to find out
if SELinux is really stopping you from doing something that is unsafe. If it turns out to be a bug
with SELinux, file a bug report and help make the service better.
Pages:
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509