The acl documentation says that /etc/grsec/proc.acl file is used for proccess acls and
/etc/grsec/file.acl is used for file acls. Howether then I run 'gradm -E' i get the error:
Unable to open /etc/grsec/acl for reading.
Error: No such file or directory
then i run 'strings /sbin/gradm | grep /etc/grsec' i see that it looks for /etc/grsec/acl only.
So i tried to merge my file.acl & proc.acl in single file /etc/grsec/acl. First come the file acls
and then proc acls. But now then i run 'gradm -E' i get the error:
"/bin" caused a syntax error on line 2 of /etc/grsec/acl
while /etc/grsec/acl starts with:
/ rwx
/bin rx
/sbin rx
/lib rx
.....
I use grsecurity-1.9.5-rc3 and gradm-1.3-rc3.
It seems like(from 'strace gradm -E') gradm reads only /etc/grsec/acl and you can put only
proc acls inside /etc/grsec/acl. So where does the file acls got to?
There & how should i put the file & proc acls for gradm to parse them correctly. And does it read other acl files besides /etc/grsec/acl.
Thanks a lot.