On Sun, 2011-08-21 at 02:50 +0200, Patrick Lists wrote: > Maybe SELinux blocks Apache from writing to /etc/sysconfig/iptables? > Have you looked at ? These apps seem to offer a > similar solution. I'm not using SELinux at the moment simply because I don't have the time to understand it. I'm a self-taught Linuxist. I believe it uses the 'labels' inherent with every file description block. With Craig's SU suggestion, I believe my attack detection system will successfully block the attacker's IP address on a server and for a selected ports only. I will look at fail2ban and denyhosts and see how they can help. Thank you. -- With best regards, Paul. England, EU. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: Apache Changing IPtables C 5.6 via Apache
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: Apache Changing IPtables C 5.6 via Apache
- From: Always Learning <centos@xxxxxxxxxxx>
- Date: Sun, 21 Aug 2011 02:00:32 +0100
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <4E50566D.7030101@puzzled.xs4all.nl>
- Follow-Ups:
- Re: Apache Changing IPtables C 5.6 via Apache
- From: Craig White
- Re: Apache Changing IPtables C 5.6 via Apache
- References:
- Apache Changing IPtables C 5.6 via Apache
- From: Always Learning
- Re: Apache Changing IPtables C 5.6 via Apache
- From: Patrick Lists
- Apache Changing IPtables C 5.6 via Apache
- Prev by Date: Re: Apache Changing IPtables C 5.6 via Apache
- Next by Date: Re: Apache Changing IPtables C 5.6 via Apache
- Previous by thread: Re: Apache Changing IPtables C 5.6 via Apache
- Next by thread: Re: Apache Changing IPtables C 5.6 via Apache
- Index(es):
 |