Software: Apache/2.2.3 (CentOS). PHP/5.1.6 uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44 uid=48(apache) gid=48(apache) groups=48(apache) Safe-mode: OFF (not secure) /usr/share/doc/selinux-policy-2.4.6/html/ drwxr-xr-x | |
| Viewing file: Select action/file-type: Security Enhanced Linux Reference Policy
+
admin
-
afs
+
system
- aide - aisexec - amavis - apache - apm - arpwatch - asterisk - audioentropy - automount - avahi - bind - bluetooth - canna - ccs - cipe - clamav - clockspeed - clogd - comsat - courier - cpucontrol - cron - cups - cvs - cyrus - dante - dbskk - dbus - dcc - ddclient - dhcp - dictd - distcc - djbdns - dnsmasq - dovecot - exim - fail2ban - fetchmail - finger - ftp - gatekeeper - gpm - hal - howl - i18n_input - imaze - inetd - inn - ircd - irqbalance - jabber - kerberos - ktalk - ldap - lpd - mailman - milter - monop - mta - munin - mysql - nagios - nessus - networkmanager - nis - nscd - nsd - ntop - ntp - nx - oav - oddjob - openca - openct - openvpn - pcscd - pegasus - perdition - pki - portmap - portslave - postfix - postgresql - postgrey - ppp - prelude - privoxy - procmail - publicfile - pxe - pyzor - qmail - radius - radvd - razor - rdisc - remotelogin - resmgr - rgmanager - rhcs - rhgb - ricci - rlogin - roundup - rpc - rshd - rsync - samba - sasl - sendmail - setroubleshoot - slrnpull - smartmon - snmp - snort - soundserver - spamassassin - speedtouch - squid - ssh - stunnel - sysstat - tcpd - telnet - tftp - timidity - tor - transproxy - ucspitcp - uptime - uucp - uwimap - vhostmd - virt - watchdog - xfs - xprint - xserver - zebra - zosremote * Global Booleans * Global Tunables * Layer Index * Interface Index * Template Index Layer: servicesModule: apacheInterfaces TemplatesDescription:Apache web server Interfaces:
apache_admin(
prefix
,
domain
,
role
)
SummaryAll of the rules required to administrate an apache environment Parameters
apache_append_log(
domain
)
SummaryAllow the specified domain to append to apache log files. Parameters
apache_append_squirrelmail_data(
domain
)
SummaryAllow the specified domain to append apache squirrelmail data. Parameters
apache_domtrans(
domain
)
SummaryTransition to apache. Parameters
apache_domtrans_all_scripts(
domain
)
SummaryExecute all user scripts in the user script domain. Parameters
apache_domtrans_helper(
domain
)
SummaryExecute the Apache helper program with a domain transition. Parameters
apache_domtrans_rotatelogs(
domain
)
SummaryExecute a domain transition to run httpd_rotatelogs. Parameters
apache_domtrans_sys_script(
domain
)
SummaryExecute all web scripts in the system script domain. Parameters
apache_dontaudit_append_log(
domain
)
SummaryDo not audit attempts to append to the Apache logs. Parameters
apache_dontaudit_read_state(
domain
)
Summary
Parameters
apache_dontaudit_rw_bugzilla_script_stream_sockets(
domain
)
SummaryDo not audit attempts to read and write Apache bugzill script unix domain stream sockets. Parameters
apache_dontaudit_rw_stream_sockets(
domain
)
SummaryDo not audit attempts to read and write Apache unix domain stream sockets. Parameters
apache_dontaudit_rw_sys_script_stream_sockets(
domain
)
SummaryDo not audit attempts to read and write Apache system script unix domain stream sockets. Parameters
apache_dontaudit_rw_tcp_sockets(
domain
)
SummaryDo not audit attempts to read and write Apache TCP sockets. Parameters
apache_dontaudit_search_modules(
domain
)
SummaryDo not audit attempts to search Apache module directories. Parameters
apache_exec_modules(
domain
)
SummaryAllow the specified domain to execute apache modules. Parameters
apache_getattr(
domain
)
Summarygetattr apache.process Parameters
apache_list_modules(
domain
)
SummaryAllow the specified domain to list the contents of the apache modules directory. Parameters
apache_manage_all_content(
domain
)
SummaryCreate, read, write, and delete all web content. Parameters
apache_manage_config(
domain
)
SummaryAllow the specified domain to manage apache configuration files. Parameters
apache_manage_lock(
domain
)
SummaryAllow the specified domain to create apache lock file Parameters
apache_manage_log(
domain
)
SummaryAllow the specified domain to manage to apache log files. Parameters
apache_manage_modules(
domain
)
SummaryAllow the specified domain to manage apache modules. Parameters
apache_manage_pid(
domain
)
SummaryAllow the specified domain to manage apache pid file Parameters
apache_manage_sys_content(
domain
)
SummaryAllow the specified domain to manage apache system content files. Parameters
apache_read_config(
domain
)
SummaryAllow the specified domain to read apache configuration files. Parameters
apache_read_log(
domain
)
SummaryAllow the specified domain to read apache log files. Parameters
apache_read_squirrelmail_data(
domain
)
SummaryAllow the specified domain to read apache squirrelmail data. Parameters
apache_read_state(
domain
)
Summary
Parameters
apache_read_sys_content(
domain
)
SummaryRead apache system content. Parameters
apache_relabel(
domain
)
Summaryallow domain to relabel apache content Parameters
apache_run_all_scripts(
domain
,
role
)
SummaryExecute all user scripts in the user script domain. Add user script domains to the specified role. Parameters
apache_run_helper(
domain
,
role
,
terminal
)
SummaryExecute the Apache helper program with a domain transition, and allow the specified role the dmidecode domain. Parameters
apache_rw_cache_files(
domain
)
SummaryAllow the specified domain to read and write Apache cache files. Parameters
apache_script_domtrans(
domain
)
SummaryExecute apache server in the ntpd domain. Parameters
apache_search_bugzilla_dirs(
domain
)
SummaryAllow the specified domain to search apache bugzilla directories. Parameters
apache_search_sys_content(
domain
)
SummarySearch apache system content. Parameters
apache_search_sys_script_state(
domain
)
SummarySearch system script state directory. Parameters
apache_sigchld(
domain
)
SummarySend a SIGCHLD signal to apache. Parameters
apache_signal(
domain
)
SummarySend a signal to apache. Parameters
apache_signull(
domain
)
SummarySend a null signal to apache. Parameters
apache_use_fds(
domain
)
SummaryInherit and use file descriptors from Apache. Parameters
Templates:
apache_content_template(
prefix
)
SummaryCreate a set of derived types for apache web content. Parameters
apache_per_role_template(
userdomain_prefix
,
user_domain
,
user_role
)
SummaryThe per role template for the apache module. Description
This template creates types used for web pages and web cgi to be used from the user home directory.
This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.
Parameters
apache_read_user_content(
domain_prefix
,
domain
)
SummaryRead user web content. Parameters
apache_read_user_scripts(
domain_prefix
,
domain
)
SummaryRead httpd user scripts executables. Parameters
|
:: Command execute :: | |
:: Shadow's tricks :D :: | |
Useful Commands
|
|
:: Preddy's tricks :D :: | |
Php Safe-Mode Bypass (Read Files)
|
|
--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0104 ]-- |