While trying to generate a policy I ran into the problem that processes get too many privileges for the directory /usr/local. Even when specifying dont-reduce-path the process still got "/usr/local rxwicdl". So I tried modifying learn_config to only include the rule "dont-reduce-path /usr/local" but this resulted in an even worse policy: "/ rxwicdl". Next up was "dont-reduce-path /", but still the policy includes "/usr/local rxwicdl"...
I am using gradm v2.1.8 with kernel 2.4.32. Any help would be appreciated.
Path /usr/local is always reduced (with dont-reduce-path)
3 posts
• Page 1 of 1
Path /usr/local is always reduced (with dont-reduce-path)
by Xerxes » Sun Apr 02, 2006 2:38 pm
- Xerxes
- Posts: 5
- Joined: Mon Jan 26, 2004 2:43 pm
by spender » Sun Apr 30, 2006 7:32 pm
Can you mail a bzipped copy of your learning log and learn_config file to spender@grsecurity.net?
-Brad
-Brad
- spender
- Posts: 2185
- Joined: Wed Feb 20, 2002 8:00 pm
3 posts
• Page 1 of 1