Glad you've solved your problem. I think most of the time users should peform these steps. It won't apply to you anymore but could help others who has the same problem
I think these are the steps you should take
1) Open the port 22 in your router. I assume you are behind th NAT. So on your router you must have some option to do NAT-ting. So put port 22 to liste to the IP address that has been assigned to your Ubuntu machine.
2) Make sure sshd is running on Ubuntu.
3) Flush iptables this way
4) Try to connect
If this all does not work try to disable selinux this way:
vi /etc/selinux/config and make sure it looks like
i just linked 2 100MHz Linux kernel 2.4.2 boxes togeather using a direct cable connection, on two 3Com PCI network cards, using the EtherLink III chipset. Unfortuanately, when I boot both PCs, i get a loading interface: eth0 for five minutes, then a failed flag. No networking suppt. in windows,... (2 Replies)
having trouble with my home XP Network. I have 2 machine running xp but the server cant access or see the second computer. Both can ping each other and i have file and printer sharing installed. HD'S are sharded. Any ideas ? (2 Replies)
Hi All...
I have never really touched any form of unix so any help would be appraciated.
I am looking at creating/building another PC to add to my network for storage purposes only.
Would unix be the best OS to use in this situation as all I have available to me is a very low end PC.
As... (10 Replies)
Does anyone noe why /home n /packages r usually kept remotely..as in network base by administrators?is it because of security reasons???
thanks. (2 Replies)
I recently received an e-mail from "the faculty" at Unix-dot-Com and I was reminded of this notable resource for folks learning about Unix and its clone, Linux. I hadn't posted anything in two years and during that time, I have been working, in my spare time, on a home network combining two Linux... (2 Replies)
I have a Windows laptop and a Sparc desktop. I'm trying to toy around with routing.
If have always on broadband from BT. My router ipaddress is:
192.168.1.1
This router uses DHCP.
My Laptop Ip is as follows:
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :... (2 Replies)
Hello world!
I'm writing to you from Chile, Southamerica, and need a little help with my tiny home netwk.
Hope you can give me a hand because this thing is breaking my balls.
This is what i have:
1 windows box with XP pro (server)
1 linux box with DSL (box)
1 wrt54gl router with dd-wrt... (1 Reply)
hello i have a ubuntu ssh server that i can acess from any of my comnputers but only if they are on the same wireless network as the server. i tested trhis my tehtehring my samsung blackjack to my windows partition and installing openssh to windows it works when windows is on the wireless but no... (1 Reply)
I have one computer with internet connection and printers that I would like to connect to another computer to use as a practice/test Server. I would like the server to access the other computer by a direct connection of some sort because I don't see the point of aquiring the hardward (ethernet... (5 Replies)
Discussion started by: theKbStockpiler
5 Replies
LEARN ABOUT LINUX
selinux
selinux(8) SELinux Command Line documentation selinux(8)NAME
SELinux - NSA Security-Enhanced Linux (SELinux)
DESCRIPTION
NSA Security-Enhanced Linux (SELinux) is an implementation of a flexible mandatory access control architecture in the Linux operating sys-
tem. The SELinux architecture provides general support for the enforcement of many kinds of mandatory access control policies, including
those based on the concepts of Type Enforcement(R), Role- Based Access Control, and Multi-Level Security. Background information and tech-
nical documentation about SELinux can be found at http://www.nsa.gov/selinux.
The /etc/selinux/config configuration file controls whether SELinux is enabled or disabled, and if enabled, whether SELinux operates in
permissive mode or enforcing mode. The SELINUX variable may be set to any one of disabled, permissive, or enforcing to select one of these
options. The disabled option completely disables the SELinux kernel and application code, leaving the system running without any SELinux
protection. The permissive option enables the SELinux code, but causes it to operate in a mode where accesses that would be denied by pol-
icy are permitted but audited. The enforcing option enables the SELinux code and causes it to enforce access denials as well as auditing
them. Permissive mode may yield a different set of denials than enforcing mode, both because enforcing mode will prevent an operation from
proceeding past the first denial and because some application code will fall back to a less privileged mode of operation if denied access.
The /etc/selinux/config configuration file also controls what policy is active on the system. SELinux allows for multiple policies to be
installed on the system, but only one policy may be active at any given time. At present, two kinds of SELinux policy exist: targeted and
strict. The targeted policy is designed as a policy where most processes operate without restrictions, and only specific services are
placed into distinct security domains that are confined by the policy. For example, the user would run in a completely unconfined domain
while the named daemon or apache daemon would run in a specific domain tailored to its operation. The strict policy is designed as a pol-
icy where all processes are partitioned into fine-grained security domains and confined by policy. It is anticipated in the future that
other policies will be created (Multi-Level Security for example). You can define which policy you will run by setting the SELINUXTYPE
environment variable within /etc/selinux/config. The corresponding policy configuration for each such policy must be installed in the
/etc/selinux/SELINUXTYPE/ directories.
A given SELinux policy can be customized further based on a set of compile-time tunable options and a set of runtime policy booleans. sys-
tem-config-securitylevel allows customization of these booleans and tunables.
Many domains that are protected by SELinux also include SELinux man pages explaining how to customize their policy.
FILE LABELING
All files, directories, devices ... have a security context/label associated with them. These context are stored in the extended
attributes of the file system. Problems with SELinux often arise from the file system being mislabeled. This can be caused by booting the
machine with a non SELinux kernel. If you see an error message containing file_t, that is usually a good indicator that you have a serious
problem with file system labeling.
The best way to relabel the file system is to create the flag file /.autorelabel and reboot. system-config-securitylevel, also has this
capability. The restorcon/fixfiles commands are also available for relabeling files.
AUTHOR
This manual page was written by Dan Walsh <dwalsh@redhat.com>.
SEE ALSO booleans(8), setsebool(8), selinuxenabled(1), togglesebool(8), restorecon(8), setfiles(8), ftpd_selinux(8), named_selinux(8),
rsync_selinux(8), httpd_selinux(8), nfs_selinux(8), samba_selinux(8), kerberos_selinux(8), nis_selinux(8), ypbind_selinux(8)FILES
/etc/selinux/config
dwalsh@redhat.com 29 Apr 2005 selinux(8)