5

SELinux outbound access to other sites with restrictions

view full story
linux-howto

http://unix.stackexchange.com – We have CentOS 6 configured with SELinux to host a number of websites. Unfortunately SELinux is preventing websites from accessing (outbound) sites, such as download.wordpress.com to update wordpress or Joomla installation. We would like to have both SELinux enabled and the ability for these sites to do such connections. Our fear is that we do # setsebool -P httpd_can_network_connect 1 and some 'developer' will create a php script to start outbound spamming resulting in our IP being black listed. Is there a way to enable outbound connections and limit restrict such outbound issues at (HowTos)