How to modify port by semanage
Daniel J Walsh
dwalsh at redhat.com
Wed Jan 30 14:48:18 UTC 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Shintaro Fujiwara wrote:
> Hi, please tell me modifying port by semanage.
>
> I could add and delete port ok, but don't know how to modify it.
>
> I read man but -m example was not there.
>
> Thanks in advance.
>
>
>
> ------------------------------------------------------------------------
>
> --
> fedora-selinux-list mailing list
> fedora-selinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-selinux-list
Ports are defined by the number and the type (udp/tcp)
So
# /usr/sbin/semanage port -a -t http_port_t -p udp 9999
# /usr/sbin/semanage port -m -t ntp_port_t -p udp 9999
# /usr/sbin/semanage port -m -t ntp_port_t -p tcp 9999
/usr/sbin/semanage: Port tcp/9999 is not defined
You can change the type of a port but not the protocol. You would have
to delete and add. You can also NOT change the default ports that come
with policy, only ones that you add.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkegjjIACgkQrlYvE4MpobMCogCffC9/7z4P+ra7D0ePWWM5j7hX
gIgAn15FEVz94RMaTEjWy9+stdhkMwEs
=XwtQ
-----END PGP SIGNATURE-----
More information about the fedora-selinux-list
mailing list