grsecurity forums


https://forums.grsecurity.net./

Path /usr/local is always reduced (with dont-reduce-path)

https://forums.grsecurity.net./viewtopic.php?f=3&t=1448

Page 1 of 1

Path /usr/local is always reduced (with dont-reduce-path)

PostPosted: Sun Apr 02, 2006 2:38 pm
by Xerxes
While trying to generate a policy I ran into the problem that processes get too many privileges for the directory /usr/local. Even when specifying dont-reduce-path the process still got "/usr/local rxwicdl". So I tried modifying learn_config to only include the rule "dont-reduce-path /usr/local" but this resulted in an even worse policy: "/ rxwicdl". Next up was "dont-reduce-path /", but still the policy includes "/usr/local rxwicdl"...

I am using gradm v2.1.8 with kernel 2.4.32. Any help would be appreciated.

PostPosted: Wed Apr 26, 2006 1:20 pm
by Xerxes
*bump*

PostPosted: Sun Apr 30, 2006 7:32 pm
by spender
Can you mail a bzipped copy of your learning log and learn_config file to spender@grsecurity.net?

-Brad
All times are UTC - 5 hours [ DST ]
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/