grsecurity forums

Skip to content

difference between grsec for 2.6.22 and 2.6.23 kernel?

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.
Topic locked

difference between grsec for 2.6.22 and 2.6.23 kernel?

Postby Vincent » Mon Jan 07, 2008 8:49 am

First of all I would like to say I really like grsecurity and are using it for some time know with full satisfaction, but I have the following question.

Are there big functional differences between the grsecurity test patch for kernel 2.6.22 and 2.6.23?

I had grsecurity running perfectly on a 2.6.22.8 (ported myself) kernel for a while. Now I upgraded to the 2.6.23.12 kernel with the newest grsecurity test patch and i have a lot of problems with "denied load of writable module" logs.

I didn't change the policy file, but all of a sudden lots of read/load operations are denied by grsecurity.

For example:
Code: Select all
Jan  7 10:10:59 ssh1 kernel: grsec: From 137.224.104.207: (vincent:U:/) denied load of writable library /home/users/vincent/webmail/config/conf.php.dist by /usr/bin/php5[php:24370] uid/euid:11770/11770 gid/egid:1001/1001, parent /bin/bash[bash:23124] uid/euid:11770/11770 gid/egid:1001/1001

The file '/home/users/vincent/webmail/config/conf.php.dist' is just a simple php file.

Above is just an example, I have this problem with a lot of files.
Did someone experience somewhat the same problem or does somebody know what is causing this?

Thnx in advance.

Vincent
Vincent
 
Posts: 19
Joined: Mon Jan 07, 2008 8:33 am
Top

Re: difference between grsec for 2.6.22 and 2.6.23 kernel?

Postby spender » Mon Jan 07, 2008 5:52 pm

Could you provide an strace of php5 showing the opening of that file? That particular denial should only appear when a file is being mmaped/mprotected to allow execution of its contents.

-Brad
spender
 
Posts: 2185
Joined: Wed Feb 20, 2002 8:00 pm
Top
Topic locked

Return to grsecurity support

Powered by phpBB® Forum Software © phpBB Group