when I enable romount_protect:
echo 1 > /proc/sys/kernel/grsecurity/romount_protect
I cannot use swapoff
swapoff -a
swapoff: Not superuser.
and in the logs, I have:
grsec: denied write to block device /dev/dm-3 by /sbin/swapon[swapoff:3405] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[bash:2727] uid/euid:0/0 gid/egid:0/0
Is this intended behaviour ?
I don't understand why swapoff needs to write to disk
Is there any way around that
swapoff does not work when romount_protect is enabled
1 post
• Page 1 of 1
swapoff does not work when romount_protect is enabled
by ThomasKeller » Tue Mar 22, 2016 9:43 am
- ThomasKeller
- Posts: 11
- Joined: Tue Mar 17, 2015 10:25 am
1 post
• Page 1 of 1