grsecurity forums


https://forums.grsecurity.net./

iptables segfaults when using grsec-stealth module.

https://forums.grsecurity.net./viewtopic.php?f=3&t=140

Page 1 of 1

iptables segfaults when using grsec-stealth module.

PostPosted: Tue Sep 10, 2002 12:59 pm
by echelon0
Hello all,

I'm using a grsec-1.9.4 patched 2.4.18 kernel with grsecurity-patched iptables 1.2.7a. I can load the ipt_stealth iptables module OK, but when I attempt to use it, iptables segfaults.

Steps taken:
1. Download and installed kernel-patch-2.4-grsecurity from Debian stable
2. Applied patch via /usr/src/kernel-patches/all/apply/grsecurity_2_4 shell script.
3. Recompiled kernel with grsec options. Rebooted.
4. Downloaded grsec-iptables-1.2.7a patch from grsecurity.net.
5. Applied to iptables 1.2.7a. Installed new iptables system wide.
6. Iptables segfaults when I use -m stealth.

What's the problem?

firewall:/usr/src/kernel-patches# iptables -A INPUT -p tcp -m stealth -j DROP
Segmentation fault

Also, where can I find the documentation, if any, for grsecurity?

Fixed, thanks to Brad.

PostPosted: Tue Sep 10, 2002 5:36 pm
by echelon0
From Brad:

>
> Download the patch again. I've fixed the problem and updated the md5sum
> to: 5ba02b152e8ae520fc00565a96477555
>
> The documentation for grsecurity's ACL system is in the papers section
> of the website. The documentation for each feature of grsecurity is
> available in the configure help during kernel configuration.

Using the updated iptablespatch at http://www.grsecurity.net/grsecurity-1. ... bles.patch worked like a charm. Thanks again to Brad for the super-quick turnaround.

Looking forward to messing around with grsecurity. :)

Sean
All times are UTC - 5 hours [ DST ]
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/