Originally posted by Danniello
View Post
There is a GUI tool that does help a bit, try to set it to listen and connect only on some random high TCP/UDP ports so it should block normal traffic (that goes to ports 80 and 433 and other known ports) https://pandeyarpit.wordpress.com/se...-gui-overview/
It's somewhat similar for AppArmor, you basically need to learn its syntax and write a config file for it.
I know it is possible to do because I've seeen enough configurations that do that (see here for httpd) https://wiki.centos.org/TipsAndTricks/SelinuxBooleans , but I never did much with SELinux or AppArmor myself because it's stupidly complex and it's not my job (I work mostly with Windows servers).
Leave a comment: