ACL Problem regarding RES_*
Posted: Sat Nov 09, 2002 9:57 pm
Hi there.
Spender Ever since I upgraded to CVS kernel of grsecurity whenever I PUT learn mode for example like this
/home/main/apache/bin/httpd lo {
/home/main/apache/bin/httpd x
/ h
-CAP_ALL
RES_FSIZE 0 0
RES_DATA 0 0
RES_STACK 0 0
RES_RSS 0 0
RES_NPROC 0 0
RES_NOFILE 0 0
RES_MEMLOCK 0 0
RES_AS 0 0
RES_LOCKS 0 0
connect {
disabled
}
bind {
disabled
}
}
or any other process
When i Generate the learn ACL all the Values In RES_* are left 0. while in the old Grsecurity it used to give them restricted values for memroy Locks, Fsize ,etc.
I tried that on many other process and it;s same
any idea why?
Spender Ever since I upgraded to CVS kernel of grsecurity whenever I PUT learn mode for example like this
/home/main/apache/bin/httpd lo {
/home/main/apache/bin/httpd x
/ h
-CAP_ALL
RES_FSIZE 0 0
RES_DATA 0 0
RES_STACK 0 0
RES_RSS 0 0
RES_NPROC 0 0
RES_NOFILE 0 0
RES_MEMLOCK 0 0
RES_AS 0 0
RES_LOCKS 0 0
connect {
disabled
}
bind {
disabled
}
}
or any other process
When i Generate the learn ACL all the Values In RES_* are left 0. while in the old Grsecurity it used to give them restricted values for memroy Locks, Fsize ,etc.
I tried that on many other process and it;s same
any idea why?