Page 1 of 1

Debian Squeez - /dev/grsec missing (from repo)

PostPosted: Thu Oct 20, 2011 7:06 am
by ziggy1
Hi there,

This is the first time i have installed grsec. This is about installing on Debian 2.6.32-5 from the Debian repositories. I apologise that this may well be the wrong place for a Debian related grsec question. If it is the wrong place, then I should be very grateful if someone would let me know the right place, because I did not find it (other than a generic Debian UseNet group).

Linux xxxx 2.6.32-5-amd64 #1 SMP Mon Oct 3 03:59:20 UTC 2011 x86_64 GNU/Linux
(virtual server)

I installed the package from apt and rebooted

# apt-get install linux-patch-grsecurity2
...snip.,,
The following NEW packages will be installed:
gradm2 kernel-package linux-patch-grsecurity2
...snip...
Setting up gradm2 (2.1.14~200910072130-1) ...
Setting up kernel-package (12.036+nmu1) ...
Setting up linux-patch-grsecurity2 (2.1.14+2.6.32.13-201005151340-1) ...
Next I did: apt-get install paxctl

I tried to run the gdadm2 and got:
# gradm2 -F -L /etc/grsec2/learning.logs
Could not open /dev/grsec.
open: No such file or director
Its correct, because the /dev/grsec was not created.

Is there something I did not know to install, or should I create the /dev/grsec myself: If so then how?

Cheers, Z

Re: Debian Squeez - /dev/grsec missing (from repo)

PostPosted: Thu Oct 20, 2011 11:28 am
by Undine
apt-get install linux-patch-grsecurity2

According to http://packages.debian.org/squeeze/all/ ... 2/filelist, this only installs a patch file, which you should apply against kernel source tree. Download kernel sources, patch them with this patch and rebuild kernel. After rebooting with grsecurity-enabled kernel "uname -r" will show kernel version with appended "-grsec".

Re: Debian Squeez - /dev/grsec missing (from repo)

PostPosted: Thu Oct 20, 2011 11:43 am
by ziggy1
Thanks for the reply.

I don't even know where to begin, but I expect to break the server whilst trying :D