Log explaination
Posted: Thu Apr 03, 2014 6:19 amHello all,
can someone please help me out on understanding the following log line generated by grsec ?
start kernel: grsec: From XX.XX.XX.XX: (qmaild:U:/usr/local/bin/tcpserver) denied bind() to 0.0.0.0 port 21428 sock type dgram protocol udp by /usr/local/bin/tcpserver[tcpserver:24216] uid/euid:700/700 gid/egid:700/700, parent /usr/local/bin/tcpserver[tcpserver:28283] uid/euid:700/700 gid/egid:700/700
From what I understand, someone from ip XX.XX.XX.XX tried to start qmaild daemon (via tcpserver) to listen on all interfaces and on port 21428 of udp !!! Is this what the log say or I have completely lost the ball here ?
Thank you
can someone please help me out on understanding the following log line generated by grsec ?
start kernel: grsec: From XX.XX.XX.XX: (qmaild:U:/usr/local/bin/tcpserver) denied bind() to 0.0.0.0 port 21428 sock type dgram protocol udp by /usr/local/bin/tcpserver[tcpserver:24216] uid/euid:700/700 gid/egid:700/700, parent /usr/local/bin/tcpserver[tcpserver:28283] uid/euid:700/700 gid/egid:700/700
From what I understand, someone from ip XX.XX.XX.XX tried to start qmaild daemon (via tcpserver) to listen on all interfaces and on port 21428 of udp !!! Is this what the log say or I have completely lost the ball here ?
Thank you