grsecurity forums

Skip to content

iptables segfaults when using grsec-stealth module.

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.
Topic locked

iptables segfaults when using grsec-stealth module.

Postby echelon0 » Tue Sep 10, 2002 12:59 pm

Hello all,

I'm using a grsec-1.9.4 patched 2.4.18 kernel with grsecurity-patched iptables 1.2.7a. I can load the ipt_stealth iptables module OK, but when I attempt to use it, iptables segfaults.

Steps taken:
1. Download and installed kernel-patch-2.4-grsecurity from Debian stable
2. Applied patch via /usr/src/kernel-patches/all/apply/grsecurity_2_4 shell script.
3. Recompiled kernel with grsec options. Rebooted.
4. Downloaded grsec-iptables-1.2.7a patch from grsecurity.net.
5. Applied to iptables 1.2.7a. Installed new iptables system wide.
6. Iptables segfaults when I use -m stealth.

What's the problem?

firewall:/usr/src/kernel-patches# iptables -A INPUT -p tcp -m stealth -j DROP
Segmentation fault

Also, where can I find the documentation, if any, for grsecurity?
Last edited by echelon0 on Tue Sep 10, 2002 4:16 pm, edited 2 times in total.
echelon0
 
Posts: 3
Joined: Tue Sep 10, 2002 12:50 pm
Top

Fixed, thanks to Brad.

Postby echelon0 » Tue Sep 10, 2002 5:36 pm

From Brad:

>
> Download the patch again. I've fixed the problem and updated the md5sum
> to: 5ba02b152e8ae520fc00565a96477555
>
> The documentation for grsecurity's ACL system is in the papers section
> of the website. The documentation for each feature of grsecurity is
> available in the configure help during kernel configuration.

Using the updated iptablespatch at http://www.grsecurity.net/grsecurity-1. ... bles.patch worked like a charm. Thanks again to Brad for the super-quick turnaround.

Looking forward to messing around with grsecurity. :)

Sean
echelon0
 
Posts: 3
Joined: Tue Sep 10, 2002 12:50 pm
Top
Topic locked

Return to grsecurity support

Powered by phpBB® Forum Software © phpBB Group