difference between grsec for 2.6.22 and 2.6.23 kernel?
Posted: Mon Jan 07, 2008 8:49 amFirst of all I would like to say I really like grsecurity and are using it for some time know with full satisfaction, but I have the following question.
Are there big functional differences between the grsecurity test patch for kernel 2.6.22 and 2.6.23?
I had grsecurity running perfectly on a 2.6.22.8 (ported myself) kernel for a while. Now I upgraded to the 2.6.23.12 kernel with the newest grsecurity test patch and i have a lot of problems with "denied load of writable module" logs.
I didn't change the policy file, but all of a sudden lots of read/load operations are denied by grsecurity.
For example:
The file '/home/users/vincent/webmail/config/conf.php.dist' is just a simple php file.
Above is just an example, I have this problem with a lot of files.
Did someone experience somewhat the same problem or does somebody know what is causing this?
Thnx in advance.
Vincent
Are there big functional differences between the grsecurity test patch for kernel 2.6.22 and 2.6.23?
I had grsecurity running perfectly on a 2.6.22.8 (ported myself) kernel for a while. Now I upgraded to the 2.6.23.12 kernel with the newest grsecurity test patch and i have a lot of problems with "denied load of writable module" logs.
I didn't change the policy file, but all of a sudden lots of read/load operations are denied by grsecurity.
For example:
- Code: Select all
Jan 7 10:10:59 ssh1 kernel: grsec: From 137.224.104.207: (vincent:U:/) denied load of writable library /home/users/vincent/webmail/config/conf.php.dist by /usr/bin/php5[php:24370] uid/euid:11770/11770 gid/egid:1001/1001, parent /bin/bash[bash:23124] uid/euid:11770/11770 gid/egid:1001/1001
The file '/home/users/vincent/webmail/config/conf.php.dist' is just a simple php file.
Above is just an example, I have this problem with a lot of files.
Did someone experience somewhat the same problem or does somebody know what is causing this?
Thnx in advance.
Vincent