grsecurity forums


https://forums.grsecurity.net./

Grsec and java

https://forums.grsecurity.net./viewtopic.php?f=3&t=2748

Page 1 of 1

Grsec and java

PostPosted: Mon Sep 05, 2011 4:13 am
by melco
Hi
I think grsec prevents Wuala (java-based p2p online storage) from starting.
Strace output on pastebin.
Code: Select all
# sysctl -a | grep grsec
kernel.grsecurity.linking_restrictions = 1
kernel.grsecurity.deter_bruteforce = 0
kernel.grsecurity.fifo_restrictions = 1
kernel.grsecurity.signal_logging = 1
kernel.grsecurity.forkfail_logging = 1
kernel.grsecurity.timechange_logging = 1
kernel.grsecurity.chroot_deny_shmat = 1
kernel.grsecurity.chroot_deny_unix = 1
kernel.grsecurity.chroot_deny_mount = 1
kernel.grsecurity.chroot_deny_fchdir = 1
kernel.grsecurity.chroot_deny_chroot = 1
kernel.grsecurity.chroot_deny_pivot = 1
kernel.grsecurity.chroot_enforce_chdir = 1
kernel.grsecurity.chroot_deny_chmod = 1
kernel.grsecurity.chroot_deny_mknod = 1
kernel.grsecurity.chroot_restrict_nice = 1
kernel.grsecurity.chroot_caps = 1
kernel.grsecurity.chroot_deny_sysctl = 1
kernel.grsecurity.audit_mount = 1
kernel.grsecurity.dmesg = 1
kernel.grsecurity.chroot_findtask = 1
kernel.grsecurity.resource_logging = 0
kernel.grsecurity.harden_ptrace = 1
kernel.grsecurity.grsec_lock = 0
kernel.osrelease = 2.6.32.45-grsec


Please help to fix this.

Re: Grsec and java

PostPosted: Mon Sep 05, 2011 4:48 am
by PaX Team
melco wrote:I think grsec prevents Wuala (java-based p2p online storage) from starting.
besides searching the forum next time, you want to disable MPROTECT on /usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0.x86_64/jre/bin/java probably.

Re: Grsec and java

PostPosted: Mon Sep 05, 2011 7:12 am
by melco
Thanks.
Image
All times are UTC - 5 hours [ DST ]
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/