From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-hardened+bounces-3341-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1QBQjD-00019w-QC
	for garchives@archives.gentoo.org; Sun, 17 Apr 2011 12:05:25 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 7D016E0330
	for <garchives@archives.gentoo.org>; Sun, 17 Apr 2011 12:05:22 +0000 (UTC)
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
	by pigeon.gentoo.org (Postfix) with ESMTP id 76E9A1C00D
	for <gentoo-hardened@lists.gentoo.org>; Sun, 17 Apr 2011 11:21:14 +0000 (UTC)
Received: from laptop1.gw.ume.nu (ip1-67.bon.riksnet.se [77.110.8.67])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	(Authenticated sender: zorry)
	by smtp.gentoo.org (Postfix) with ESMTPSA id CFA001B4079
	for <gentoo-hardened@lists.gentoo.org>; Sun, 17 Apr 2011 11:21:13 +0000 (UTC)
From: Magnus Granberg <zorry@gentoo.org>
Organization: Gentoo.org
To: gentoo-hardened@lists.gentoo.org
Subject: Re: [gentoo-hardened] apache ssl problems: PAX terminates execution attempt
Date: Sun, 17 Apr 2011 13:20:46 +0200
User-Agent: KMail/1.13.6 (Linux/2.6.37-hardened-r5; KDE/4.6.2; x86_64; ; )
References: <e954c7d36696f27da86272b7e0ccfabd.squirrel@atoth.sote.hu> <20110417014914.GA3917@home.power> <f4e5e470922c612bd1dfc6ba20d9eebd.squirrel@atoth.sote.hu>
In-Reply-To: <f4e5e470922c612bd1dfc6ba20d9eebd.squirrel@atoth.sote.hu>
Precedence: bulk
List-Post: <mailto:gentoo-hardened@lists.gentoo.org>
List-Help: <mailto:gentoo-hardened+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-hardened+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-hardened+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-hardened.gentoo.org>
X-BeenThere: gentoo-hardened@lists.gentoo.org
Reply-to: gentoo-hardened@lists.gentoo.org
MIME-Version: 1.0
Content-Type: Text/Plain;
  charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Message-Id: <201104171320.47194.zorry@gentoo.org>
X-Archives-Salt: 
X-Archives-Hash: 52fb83caf77a21cd90399ae893a983b6

s=C3=B6ndag 17 april 2011 12.27.19 skrev  T=C3=B3th Attila:
> 2011.=C3=81prilis 17.(V) 03:49 id=C5=91pontban Alex Efros ezt =C3=ADrta:
> > Hi!
> >=20
> > On Sun, Apr 17, 2011 at 02:17:21AM +0200, "T=C3=B3th Attila" wrote:
> >> Reverting to the old binary makes the problem go away.
> >=20
> > Any chance it's as trivial as somehow modified old binary - like with
> > paxctl?
>=20
> paxctl -m haven't solved the problem.
>=20
> > Also, you can try to use non-hardened gcc to build apache, just in case.
>=20
> I would rather not use a non-hardened apache on the server. But I can give
> a try to compile it using a vanilla gcc profile.
> Any of you successfully recompiled apache with a recent toolchain and see
> the ssl connections are working correctly?
>=20
> Thx:
> Dw.
>=20
> > --
> >=20
> > 			WBR, Alex.
Look at bug http://bugs.gentoo.org/show_bug.cgi?id=3D363443
/Magnus