grsecurity forums


https://forums.grsecurity.net./

Problem with dhcpd

https://forums.grsecurity.net./viewtopic.php?f=3&t=740

Page 1 of 1

Problem with dhcpd

PostPosted: Tue Mar 09, 2004 12:45 am
by letrout
Using gradm 1.9.14 and grsec patched 2.4.25 kernel. I'm having trouble getting dhcpd to work (ISC dhcpd that shipped with SuSE 8.2). Even with ACLs disabled, I get this in the logs:

Mar 8 22:37:26 c433 dhcpd: unable to create icmp socket: Operation not permitted
Mar 8 22:37:26 c433 dhcpd: Open a socket for LPF: Operation not permitted

I have enabled the socket restrictions, but I'm trying to start dhcpd as root and root has not been added to any of the socket restricted groups.

What am I doing wrong?

PostPosted: Tue Mar 09, 2004 1:41 am
by letrout
Ok, it looks like SuSE installs dhcpd to run chroot'ed in /var/lib/dhcp, and I have all of grsecurity's chroot features enabled. If I turn of the chroot for dhcpd it starts fine.

This is my first attempt at runnign something chroot'ed with a grsecurity kernel, guess I have to delve into all those options and see which is causing my problems. If anyone has any hints for me, it would be greatly appreciated.

PostPosted: Wed Dec 14, 2005 5:15 am
by Po0ky
Code: Select all
echo 0 > /proc/sys/kernel/grsecurity/chroot_caps


This did the trick for me
All times are UTC - 5 hours [ DST ]
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/