I tried to upgrade a Debian Lenny system to Squeeze.
I ran into the error:
grsec: denied access of range 0 -> a00 in /dev/mem by /sbin/lilo[..]..
I can see the benefits of not allowing anyone to replace a kernel, but how am I supposed to upgrade a system?
(After that i ran into troubles with udev, but I hope that is unrelated.)
Install grub instead of lilo?
4 posts
• Page 1 of 1
Install grub instead of lilo?
by specs » Mon Jun 06, 2011 2:57 pm
- specs
- Posts: 190
- Joined: Sun Mar 26, 2006 7:00 am
Re: Install grub instead of lilo?
by spender » Tue Jun 07, 2011 8:10 am
I didn't know of anything using the first page in /dev/mem so I disallowed it. I've verified with the lilo source that it does need this access to the BIOS data area, of size 5*SECTOR_SIZE (5 * 512 = 0xa00), so I'll add an exception for this case. The relevant functions are fetch() and purge() in probe.c.
Thanks,
-Brad
Thanks,
-Brad
- spender
- Posts: 2185
- Joined: Wed Feb 20, 2002 8:00 pm
Re: Install grub instead of lilo?
by spender » Tue Jun 07, 2011 8:06 pm
This is fixed in the latest patches released. Thanks again for the report.
-Brad
-Brad
- spender
- Posts: 2185
- Joined: Wed Feb 20, 2002 8:00 pm
Re: Install grub instead of lilo?
by specs » Thu Jun 09, 2011 12:33 pm
The original problem (not being able to install a new kernel) was not related to grsecurity. It was an udev-poblem which has been solved.
The other problem with the grsec error was also present in other versions of debian. This error was solved after installing the latest patch.
Thank you.
The other problem with the grsec error was also present in other versions of debian. This error was solved after installing the latest patch.
Thank you.
- specs
- Posts: 190
- Joined: Sun Mar 26, 2006 7:00 am
4 posts
• Page 1 of 1