Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [root@localhost selinux]# history
- 1 yum install -y httpd
- 2 systemctl enable --now httpd
- 3 getenforce
- 4 ps aux | grep httpd
- 5 ps Zaux | grep httpd
- 6 cd /var/www
- 7 ls -Z
- 8 ps auxZ | grep http
- 9 seinfo
- 10 cd /boot
- 11 ls
- 12 cd /proc
- 13 ls
- 14 cd
- 15 less /proc/cmdline
- 16 ls -Z
- 17 cd /boot
- 18 ls
- 19 less config-4.18.0-193.el8.x86_64
- 20 dmesg | grep SELinux
- 21 getenforce
- 22 setenforce --help
- 23 vim /etc/sysconfig/selinux
- 24 yum install -y git
- 25 git clone https://github.com/sandervanvugt/selinux
- 26 cd selinux/
- 27 ls
- 28 cd ..
- 29 git clone https://github.com/sandervanvugt/luth
- 30 ls
- 31 mv luth /root
- 32 mv selinux /root
- 33 cd /root
- 34 ls
- 35 luth/countdown 12
- 36 getenforce
- 37 mkdir /web
- 38 cd /web
- 39 vim index.html
- 40 vim /etc/httpd/conf/httpd.conf
- 41 systemctl restart httpd
- 42 curl http://localhost
- 43 getenforce
- 44 setenforce permissive
- 45 curl http://localhost
- 46 vim /etc/httpd/conf/httpd.conf
- 47 systemctl restart httpd
- 48 curl http://localhost
- 49 getenforce
- 50 setenforce disable
- 51 setenforce disabled
- 52 setenforce enforcing
- 53 curl http://localhost
- 54 systemctl status auditd
- 55 grep AVC /var/log/audit/audit.log
- 56 ls -Zd /web /var/www/html
- 57 man semanage
- 58 man semanage-fcontext
- 59 semanage fcontext -a -t httpd_sys_content_t "/web(/.*)?"
- 60 cd
- 61 ls -Zd /web
- 62 cd /etc/selinux/
- 63 ls
- 64 cd targeted/
- 65 ls
- 66 cd contexts/
- 67 ls
- 68 cd files/
- 69 ls
- 70 cat file_contexts.local
- 71 cd
- 72 restorecon -Rv /web
- 73 ls -lZd /web
- 74 getenforce
- 75 curl http://localhost
- 76 less /var/log/audit/audit.log
- 77 grep AVC /var/log/audit/audit.log | grep httpd
- 78 cd /web
- 79 touch newfile
- 80 ls -Z newfile
- 81 rpm -qf $(which chcon)
- 82 which chcon
- 83 ps Zaux | grep http
- 84 sestatus
- 85 man semanage-fcontext
- 86 grep SELINUX /boot/config-4.18.0-193.el8.x86_64
- 87 cd
- 88 luth/countdown 12
- 89 ps -eZ | grep dbus-daemon
- 90 ps auxZ | grep dbus-daemon
- 91 semanage fcontext -l
- 92 semanage fcontext -l | wc
- 93 semanage fcontext -l | grep contain
- 94 seinfo -t
- 95 seinfo -t | wc
- 96 seinfo -t | grep container
- 97 man -k _selinux
- 98 yum install -y selinux-policy-doc
- 99 yum provides */seinfo
- 100 man -k _selinux
- 101 man -k _selinux | docker
- 102 man -k _selinux | grep docker
- 103 man -k _selinux | grep container
- 104 man container_selinux
- 105 yum provides */sepolicy
- 106 yum install policycoreutils-devel
- 107 yum install vsftpd -y
- 108 vim /etc/vsftpd/vsftpd.conf
- 109 chmod 777 /var/ftp/pub/
- 110 systemctl start vsftpd
- 111 yum install -y lftp
- 112 lftp localhost
- 113 getsebool -a
- 114 getsebool -a | grep ftp
- 115 setsebool -P ftpd_anon_write on
- 116 lftp localhost
- 117 vim /etc/vsftpd/vsftpd.conf
- 118 reboot
- 119 history
- 120 echo how to fix /etc/shadow
- 121 restorecon -v /etc/shadow
- 122 luth/countdown 17
- 123 grep sealert /var/log/messages
- 124 sealert -l df2e0a41-bee5-4f37-9095-56b79d8a1386 | less
- 125 # semanage fcontext -a -t public_content_rw_t pub
- 126 # restorecon -R -v pub
- 127 # semanage fcontext -a -t public_content_rw_t "/var/ftp/pub(/.*)?"
- 128 semanage fcontext -a -t public_content_rw_t "/var/ftp/pub(/.*)?"
- 129 restorecon -Rv /var/ftp/pub/
- 130 lftp localhost
- 131 systemctl status vsftpd
- 132 systemctl enable --now vsftpd
- 133 lftp localhost
- 134 grep sealert /var/log/messages
- 135 sealert -l a863d808-57e2-4151-a2c2-ff7eaf809739 | less
- 136 vim /etc/httpd/conf/httpd.conf
- 137 grep 82 /etc/services | less
- 138 systemctl restart httpd
- 139 systemctl status httpd
- 140 grep sealert /var/log/messages
- 141 sealert -l 85879352-e35d-4441-830b-771dfd6cabfd
- 142 sealert -l 85879352-e35d-4441-830b-771dfd6cabfd | less
- 143 semanage port -a -t http_port_t -p tcp 82
- 144 systemctl restart httpd
- 145 systemctl status httpd
- 146 grep sealert /var/log/messages | grep ftp
- 147 sealert -l df2e0a41-bee5-4f37-9095-56b79d8a1386
- 148 sealert -l df2e0a41-bee5-4f37-9095-56b79d8a1386 | less
- 149 sesearch -b ftpd_full_access -A
- 150 sesearch -b ftpd_anon_write -A
- 151 sesearch -s httpd_t -t user_home_t -p read -A
- 152 sesearch -s httpd_t -t default_t -p read -A
- 153 ldd /usr/bin/passwd
- 154 semanage permissive -l
- 155 semanage permissive -d httpd_t
- 156 seinfo -tunconfined_t
- 157 semodule -l
- 158 grep http /var/log/audit/audit.log
- 159 grep http /var/log/audit/audit.log | audit2allow -M myhttpd
- 160 ls
- 161 vim myhttpd.te
- 162 git clone https://github.com/SELinuxProject/refpolicy
- 163 cd refpolicy/
- 164 ls
- 165 cd policy/
- 166 ls
- 167 cd modules/
- 168 ls
- 169 cd services/
- 170 ls
- 171 less zabbix.te
- 172 less zabbix.fc
- 173 cd
- 174 cd selinux/
- 175 ls
- 176 vim sander.te
- 177 vim sander.fc
- 178 checkmodule -M -m -o sander.mod sander.te
- 179 vim sander.te
- 180 checkmodule -M -m -o sander.mod sander.te
- 181 ls
- 182 semodule_package -o sander.pp -m sander.mod -f sander.fc
- 183 semodule -i sander.pp
- 184 vim sander.fc
- 185 semodule_package -o sander.pp -m sander.mod -f sander.fc
- 186 semodule -i sander.pp
- 187 mkdir /opt/sander
- 188 ls -Zd /opt/sander
- 189 restorecon -Rv /opt/sander
- 190 cd
- 191 luth/countdown 11
- 192 seinfo -tunconfined_t
- 193 seinfo -aunconfined_domain_type -x | less
- 194 cd /etc/selinux/targeted/policy/
- 195 ls
- 196 cd ..
- 197 ls
- 198 cd contexts/files/
- 199 ls
- 200 less file_contexts.local
- 201 semanage user -l
- 202 semanage login -l
- 203 useradd linda
- 204 semanage login -a -s user_u linda
- 205 semanage login -l
- 206 ssh linda@localhost
- 207 passwd linda
- 208 ssh linda@localhost
- 209 cd
- 210 cd selinux/
- 211 ls
- 212 cat startrot13
- 213 vim rot13.service
- 214 vim server.php
- 215 vim setup-rot.sh
- 216 ./setup-rot.sh
- 217 sepolgen --application startrot
- 218 ls
- 219 sepolgen --application startrot13
- 220 vim startrot13.te
- 221 ./startrot13.sh
- 222 semodule -l | grep start
- 223 seinfo -t | grep start
- 224 history
- 225 ls
- 226 vim /etc/sysconfig/selinux
- 227 pastebin
- 228 history
Add Comment
Please, Sign In to add comment