This is my first post on that forum, so hi everyone.
The problem I encounter is that I want SElinux to be enabled and enforcing policies. When I experimented with that on RHEL all worked fine, but it seems not to be on CentOS. Maybe there is something I completely forgot about? What I want to achieve is that SSHD won't be able to bind to ports other than specified in SElinux policy.
Some data:
Code: Select all
Centos 6.6(Final)
Code: Select all
SELinux status: enabled
SELinuxfs mount: /selinux
Current mode: enforcing
Mode from config file: enforcing
Policy version: 24
Policy from config file: targeted
Code: Select all
ssh_port_t tcp 22
Code: Select all
Port 2222
#AddressFamily any
#ListenAddress 0.0.0.0
#ListenAddress ::
ListenAddress 10.10.10.10
ListenAddress 192.168.11.48:22
Code: Select all
State Recv-Q Send-Q Local Address:Port Peer Address:Port
LISTEN 0 128 10.10.10.10:2222 *:* users:(("sshd",1209,4))
LISTEN 0 128 192.168.11.48:22 *:* users:(("sshd",1209,3))
Thanks,