Hello,
I'm using the latest stable grsec version on a vanilla kernel 2.6.14.6 under Debian stable.
grsec is configured in high security mode, with pax enabled too.
My logs are filled with entries such as :
<date> <IP>: requesting 4294893568 for RLIMIT_MEMLOCK against limit 32768 for /usr/sbin/apache-ssl[apache-ssl:30529] uid/euid:33/33 gid/egid:33/33, parent /usr/sbin/apache-ssl[apache-ssl:12134] uid/euid:0/0 gid/egid:0/0
The amount of memory to be locked varies a bit, but it's still near 2^32 bytes.
Apache is v1.3.33-6 (latest debian stable packaged version), with PHP v4.3.10-16 (ditto)
This sounds crazy to me that apache tries to lock 4 Gb of memory.
I've tried to grep thru the apache logs to find out what did cause these entries, I've found nothing relevant... It's just normal browsing.
I've searched in this forum, on others, on the wiki, I've found nothing that could explain this. I saw that ntpd was having similar problems a while ago, but nothing about apache, and it was only about 7 Mb, not 4 Gb !
Any idea ?