after grsec-patch host unreachable

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.

after grsec-patch host unreachable

Postby obsolete » Fri Jun 18, 2004 4:09 pm

hi,

i patched my 2.4.26 kernel and did the steps as described in
http://www.grsecurity.org/quickstart.pdf ...

after the succesfully building and rebooting (the logs look normal)
i'm not able to connect to the box. no ping nor ssh nor anything else work.

if i boot the old kernel, and take a look on the boot logs, all things look ok... wired heh?!


any ideas?
obsolete
 
Posts: 3
Joined: Fri Jun 18, 2004 4:04 pm

Re: after grsec-patch host unreachable

Postby hightower » Fri Jun 18, 2004 6:49 pm

obsolete wrote:hi,

i patched my 2.4.26 kernel and did the steps as described in
http://www.grsecurity.org/quickstart.pdf ...

after the succesfully building and rebooting (the logs look normal)
i'm not able to connect to the box. no ping nor ssh nor anything else work.

if i boot the old kernel, and take a look on the boot logs, all things look ok... wired heh?!
any ideas?

I doubt that grsec has anything to do with that. Maybe you forgot to compile in network card support? tcp/ip support missing? Maybe a "diff -Naurp old_dmesg new_dmesg" will tell anything important different? Check it out.

ciao, Marc
hightower
 
Posts: 49
Joined: Wed Mar 06, 2002 11:36 am

Postby obsolete » Fri Jun 18, 2004 9:04 pm

hi,

i just asked a network admin. he told me that the problem is, after the reboot, the kernel writes some necessary parameters into the MII-EEprom of the network card. but this parameters become not active before a draw of the power plug. and without those "activated" parameters the network card won't work.

wired heh?! i never saw a such strange behaviour before..

-obsolete
obsolete
 
Posts: 3
Joined: Fri Jun 18, 2004 4:04 pm

Postby Sleight of Mind » Sat Jun 19, 2004 4:32 pm

it sounds a bit like bs to me tbh, i've had many different network cards in my life, rebooted a lot ;) and tried many kernels (both with and without grsec)
Never had a network card that didn't get back up after a reboot, unless in the case where i did what Marc suggested ;)
Sleight of Mind
 
Posts: 92
Joined: Tue Apr 08, 2003 10:41 am

Postby torne » Sat Jun 19, 2004 10:29 pm

No idea whether this is the original poster's problem or not but this does exist; ethernet cards that support wake-on-LAN get a set of parameters 'filled in' the first time they are initialised by the OS and then leave themselves activated after poweroff/reboot (in order to reactivate the machine when it sees a magic packet). Some Linux drivers can't deal with the card being in this state, and so fail to be able to initialise the card when the OS is restarted. My server suffered from this problem until I pulled out the wake-on-LAN cable - it could not talk to the network after a reboot until it was unplugged from the mains and reconnected.

Weird but true, but it may not be the original poster's problem; it's not exactly common. =)
torne
 
Posts: 54
Joined: Mon Aug 12, 2002 12:52 pm

Postby obsolete » Sun Jun 27, 2004 5:37 pm

unfortunately it can't be the wol cable, because there is no :(
so, i hope the box will be running stable the next ten yeats :)

-obsolete
obsolete
 
Posts: 3
Joined: Fri Jun 18, 2004 4:04 pm

Postby torne » Sun Jun 27, 2004 7:19 pm

Modern systems don't need a cable to do wake-on-LAN - it's handled over the bus by the BIOS. My server is just old as the hills. Look in the BIOS for settings? No idea if this is actually the problem, though.
torne
 
Posts: 54
Joined: Mon Aug 12, 2002 12:52 pm


Return to grsecurity support