chrooted zimbra (www.zimbra.com) install issues w/grsec
Posted: Fri Sep 29, 2006 4:49 pmI have a chrooted install of zimbra on my server and I am trying to get it to work correctly with grsecurity and pax enabled in my custom kernel. It does work but I see these errors in my kern.log:
Sep 29 16:57:38 server kernel: grsec: From 65.34.23.43: signal 11 sent to /home/chroot/sarge-i386/opt/zimbra/jdk1.5.0_08/bin/java[java:4008] uid/euid:1008/1008 gid/egid:130/130, parent /home/chroot/sarge-i386/opt/zimbra/libexec/zmmtaconfig[zmmtaconfig:5433] uid/euid:1008/1008 gid/egid:130/130
These are the pax flags enabled on /home/chroot/sarge-i386/opt/zimbra/jdk1.5.0_08/bin/java
# chpax -v java
----[ chpax 0.7 : Current flags for java (pemrxs) ]----
* Paging based PAGE_EXEC : disabled
* Trampolines : not emulated
* mprotect() : not restricted
* mmap() base : not randomized
* ET_EXEC base : not randomized
* Segmentation based PAGE_EXEC : disabled
the zmmtaconfig is a perl script so.... I wasn't sure if that was the issue or not...
And I get the same thing from zmtomcatmgr script that starts tomcat..
Sep 29 17:32:40 server kernel: grsec: From 65.23.34.32: signal 11 sent to /home/chroot/sarge-i386/opt/zimbra/jdk1.5.0_08/bin/java[java:16076] uid/euid:0/0 gid/egid:0/0, parent /home/chroot/sarge-i386/opt/zimbra/libexec/zmtomcatmgr[zmtomcatmgr:31403] uid/euid:0/0 gid/egid:0/0
Everything seems to be working right.... Can you tell me why I am getting these alerts and how to resolve them please. Thanks.
Sep 29 16:57:38 server kernel: grsec: From 65.34.23.43: signal 11 sent to /home/chroot/sarge-i386/opt/zimbra/jdk1.5.0_08/bin/java[java:4008] uid/euid:1008/1008 gid/egid:130/130, parent /home/chroot/sarge-i386/opt/zimbra/libexec/zmmtaconfig[zmmtaconfig:5433] uid/euid:1008/1008 gid/egid:130/130
These are the pax flags enabled on /home/chroot/sarge-i386/opt/zimbra/jdk1.5.0_08/bin/java
# chpax -v java
----[ chpax 0.7 : Current flags for java (pemrxs) ]----
* Paging based PAGE_EXEC : disabled
* Trampolines : not emulated
* mprotect() : not restricted
* mmap() base : not randomized
* ET_EXEC base : not randomized
* Segmentation based PAGE_EXEC : disabled
the zmmtaconfig is a perl script so.... I wasn't sure if that was the issue or not...
And I get the same thing from zmtomcatmgr script that starts tomcat..
Sep 29 17:32:40 server kernel: grsec: From 65.23.34.32: signal 11 sent to /home/chroot/sarge-i386/opt/zimbra/jdk1.5.0_08/bin/java[java:16076] uid/euid:0/0 gid/egid:0/0, parent /home/chroot/sarge-i386/opt/zimbra/libexec/zmtomcatmgr[zmtomcatmgr:31403] uid/euid:0/0 gid/egid:0/0
Everything seems to be working right.... Can you tell me why I am getting these alerts and how to resolve them please. Thanks.
