From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1FiIAG-0003zX-TQ for garchives@archives.gentoo.org; Mon, 22 May 2006 21:42:13 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.6/8.13.6) with SMTP id k4MLZ433009134; Mon, 22 May 2006 21:35:04 GMT Received: from rwcrmhc12.comcast.net (rwcrmhc12.comcast.net [216.148.227.152]) by robin.gentoo.org (8.13.6/8.13.6) with ESMTP id k4MLZ2iK023431 for ; Mon, 22 May 2006 21:35:03 GMT Received: from gorn.pebenito.net (c-69-243-92-79.hsd1.md.comcast.net[69.243.92.79]) by comcast.net (rwcrmhc12) with SMTP id <20060522213501m1200pqkove>; Mon, 22 May 2006 21:35:01 +0000 Subject: Re: [gentoo-hardened] SELinux problem -> avc: denied {execmem} From: Chris PeBenito To: gentoo-hardened@lists.gentoo.org In-Reply-To: <447199AF.3820.DA807E39@pageexec.freemail.hu> References: <200605212240.15496.jan@codejunky.org> <447199AF.3820.DA807E39@pageexec.freemail.hu> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-cHtwyuu73WHuqyPyb0+A" Date: Mon, 22 May 2006 10:43:44 -0400 Message-Id: <1148309024.8245.8.camel@defiant.pebenito.net> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org Mime-Version: 1.0 X-Mailer: Evolution 2.6.1 X-Archives-Salt: 367392ef-b9d7-4ca6-90f9-df5d13d83aaa X-Archives-Hash: 6288fe9656dc038aa476fddf8f33dfe9 --=-cHtwyuu73WHuqyPyb0+A Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Mon, 2006-05-22 at 10:59 +0200, pageexec@freemail.hu wrote: > On 22 May 2006 at 9:04, Petre Rodan wrote: > > > > how about /sbin/runscript, /sbin/init, /bin/bash? > > > Same result, GNU_STACK is in the header. > >=20 > > strange. please file a bug report and make sure you include emerge --in= fo in it. >=20 > aren't execmem denials due to text relocations? i'd run a scanelf -t on > all affected executables and libraries just in case... No, that would be execmod. --=20 Chris PeBenito Developer, Hardened Gentoo Linux Embedded Gentoo Linux =20 Public Key: http://pgp.mit.edu:11371/pks/lookup?op=3Dget&search=3D0xE6AF924= 3 Key fingerprint =3D B0E6 877A 883F A57A 8E6A CB00 BC8E E42D E6AF 9243 --=-cHtwyuu73WHuqyPyb0+A Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.3 (GNU/Linux) iD8DBQBEcc4gvI7kLeavkkMRAnnnAJsFCMWlApnfLgx6CyxKz4pjv2gHmACglKww CBYRWyHNipG5WJH7Z55EvTE= =RVCa -----END PGP SIGNATURE----- --=-cHtwyuu73WHuqyPyb0+A-- -- gentoo-hardened@gentoo.org mailing list