RHCSA SELinux Questions || SELinux Example || semanage || RHEL 9
Рет қаралды 19,357
Күн бұрынIn this video, we're going to cover some RHCSA SELinux questions, as well as an example, and then we're going to change the SELinux mode on our RHEL 9 server.
Even if you're familiar with SELinux, there's always something new to learn, so make sure to check out this video! We'll cover some common RHCSA SELinux questions and then show you how to change the SELinux mode on your RHEL 9 server. We also provide a handy example to help you understand how to use SELinux.
SELinux is an advanced security feature in Linux that enables administrators to have extra control over the system. Until the SELinux context is set users will not be able to access files, directories or ports even if they have the basic read-write permissions. This video demonstrates the use of Linux taking the example of httpd service which enables Apache web server to host web pages.
Video Link for understanding SELinux basics: • RHCSA Exam Networking ...
Reading material: dextutor.com/h...
Questions based on SELinux can be on for topics:
1. SELinux Modes
2. SELinux port
3. SELinux Context
4. SELinux Booleans
semanage is the command that will be used to change the SELInux policy related to FILE context and port
Subscribe - / dextutor
This lecture is part of the RHCSA exam playlist: • RHCSA Exam Full Course
Other Reference Videos:
1. Container Part I - • RHCSA Exam Container Q...
2. SSH - • RHCSA Exam SSH topic |...
3. SELinux basics: • RHCSA Exam Networking ...
Tools Required:
1. RHEL environment
Other Playlists:
OS: • Operating System
Operating System Lab playlist: • Operating System Lab
Linux Essential: • Linux Tutorial For Beg...
Was this tutorial about SELinux in RHCSA exam helpful? If so, please share. Let me know your thoughts in the comments.
#linux #rhcsa #rhel9 #dextutor #selinux #semanage
@pdavid555 8 ай бұрын
excellent lecture! You should always prioritize permanent solution : $setenforce 0 or 1 will only set it temporarily. Once the machine reboot you will lose the configuration
@spelchk 7 ай бұрын
for the selinux context part - I had to install httpd to follow the exercise. Very good content!
@mikeharris8664 2 ай бұрын
Guys, for changing the port, the semanage-port man page literally gives the exact command that is needed. It's down at the very bottom. No need to memorize commands.
@doaa7924 2 жыл бұрын
you are literally a life saver. THANK YOUUU!!!
@arghosinha1424 10 ай бұрын
One by one, gonna eat up all the videos. Thanks, really appreciate it. 👾👾
@edith_1045 2 жыл бұрын
Very well explained sir... Thank you
@johnnydeals1705 Жыл бұрын
excellent job
@mauricionovoa9040 Жыл бұрын
great example!!!! on tree steep more used
@lynx0808 2 жыл бұрын
This was very helpful, thank you!
@sushilmestri 2 жыл бұрын
Thank you sir !
@senesiethomas7141 Жыл бұрын
brilliant presentation: my question is after allowing port 82, should we update the Apache configuration file(sudo vi /etc/httpd/conf/httpd.conf for the httpd service to listen to port 82 by modifying the listening port to 82 and starting and enable the http service? or the question will tell you if need be. Just wanted to know since i saw that you addended the port and I wanted to know if that is where to stop...Thank you very much for your wonderful dedication:
@dextutor Жыл бұрын
It would work directly
@ponnuponnu731 11 ай бұрын
when we change the Boolean using "setsebool" it is non persisten you said sir , so in exam how to set in persistent manner ?
@TheMysteryMinds. 9 ай бұрын
hi dextutor, quick question can I use chcon -t rather than semanage fcontext "(.*)?" , restorecon -Rv
@dextutor 9 ай бұрын
If it is giving the same result then surely you can
@harprem5124 Жыл бұрын
@dextutor I had a exam question asking for html port change to 81.in that case am I suppose to run the same selinux port command run for http?
@ponnuponnu731 11 ай бұрын
is there any way to change or edit port in configuration file ? or semanage is the only option ?
@juniali123 27 күн бұрын
I got it,
@GopalPokhrel Жыл бұрын
in mycase semanage-fcontext not been able to change the context of the /testweb. i did both semanage-fcontext and restorecon . someone share the possible reasons
@juniali123 27 күн бұрын
when done adding context to /test dir after that when doing curl locahost/index.html" I'm getting message "you do not have permission to access /index.html" even though I have given full permission on the file 777, please let me know ASAP I will be taking the test next week. Thanks
@dextutor 27 күн бұрын
Have you changed the SELinux context and edit the configuration file?
@robusthacker2800 3 ай бұрын
Will there be any questions for firewall-cmd ?
@dextutor 3 ай бұрын
Yes..there can be..or you might have to use it in some other context also
@crimsonghoul8983 2 жыл бұрын
Are they going to ask questions using http only or would they ask us to enable port or settings for other services or applications?
@dextutor 2 жыл бұрын
Anything can be asked. Even you might to have to enable a port for a question where it might not have been explicitly mentioned. The point is you should know how to work with everything
@gnanatejaags2163 2 жыл бұрын
Please do video on "containers".
@dextutor 2 жыл бұрын
Coming soon
@dextutor 2 жыл бұрын
kzbin.info/www/bejne/paqrnqB9jZVkrq8 kzbin.info/www/bejne/ona0eGWal8innMU
@ha7763 2 жыл бұрын
If I receive an error message saying "httpd.service failed to start because the control process exited with error code" how can I fix this ?
@dextutor 2 жыл бұрын
Thete can be multiple reasons.. See if any solution in this link works stackoverflow.com/questions/37119479/job-for-httpd-service-failed-because-the-control-process-exited-with-error-code
@Linuxenthusiast 2 жыл бұрын
check what's the systemctl status httpd , and it will give you the error. I got the same error and was able to figure it out
@nandhiniramamurthy4290 2 жыл бұрын
Please do a video on autofs
@dextutor 2 жыл бұрын
Sure
@killakan86 2 жыл бұрын
Thank you very much sir. But in 6:05 How should we know that the context here is httpd_port_t ? i would not have known it.
@dextutor 2 жыл бұрын
For ports the context is httpd_port_t. Its fixed
@doaa7924 2 жыл бұрын
you can use semanage port -l to see the list of contexts or SELinux Port Types
@tonyg460 Жыл бұрын
semanage port -l | grep http
@sandip542 Жыл бұрын
Can we reboot the server,,in rhcsa exam,,,for example if we change settings in/etc/selinuxconfig in order to get the changes persistent we need to reboot the server?
@dextutor Жыл бұрын
You can but there is no need to reboot. And in case you reset it by mistake you will loose all work
@sandip542 Жыл бұрын
@@dextutor then what about if they ask like change selinux mode to permissive and it should be persistent....we need to alter the selinux config file na and changes should persist only after reboot right
@dextutor Жыл бұрын
Yes you can do
@sandip542 Жыл бұрын
@@dextutor how to register for rhcsa 8 exam,,
@warronfrench8163 Жыл бұрын
Have you ever heard of semanage login -a -s staff_u somuser causing networking to break? It happened to me three times this past week. It could be a coincidence but I was the only administrator on the machine.
@dextutor Жыл бұрын
No idea.. Sorry
@rottenfist220 Жыл бұрын
Warning in RHEL9 you cannot completely disable SELinux anymore.
@dextutor Жыл бұрын
Check access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html-single/using_selinux/index
@luvk421 Жыл бұрын
I'm not getting content part
@kamaleshparthiban8532 2 жыл бұрын
Hi bro can you make video what kind of questions will be asked in the exam rhel 8 RHCSA
@dextutor 2 жыл бұрын
Dear this video and the rest of the videos in the playlist contains exactly what you are looking for
@luvk421 2 жыл бұрын
@@dextutor hiya from where can i get centOs 8? If I'm not wrong its dead on 31 dec 2021
@ritredamehilamin1844 2 жыл бұрын
@@dextutor 4fdfxddçfA da ßßßs2qasf
DexTutor
Рет қаралды 48 М.
DexTutor
Рет қаралды 12 М.
DexTutor
Рет қаралды 35 М.
DexTutor
Рет қаралды 20 М.
Tech Arkit
Рет қаралды 22 М.
DexTutor
Рет қаралды 17 М.
DexTutor
Рет қаралды 37 М.