From: Joshua Kinard <kumba@gentoo.org>
To: gentoo-hardened@lists.gentoo.org
Subject: Re: [gentoo-hardened] Weird coincidental PAX crashes
Date: Sat, 10 May 2014 07:14:29 -0400 [thread overview]
Message-ID: <536E0A15.7070603@gentoo.org> (raw)
In-Reply-To: <98626617c230cc350af99343bde03183.squirrel@atoth.sote.hu>
On 05/09/2014 13:46, "Tóth Attila" wrote:
> 2014.Május 9.(P) 17:39 időpontban Michael Orlitzky ezt írta:
>> On 05/09/2014 11:29 AM, Mark Gomersbach wrote:
>>> Maybe a bug somewhere else too, which combination kernel/grsec/pax was
>>> used?
>>>
>>
>> Whatever came with sys-kernel/hardened-sources-3.11.7-r1:
>>
>> # uname -a
>> Linux mmmc2 3.11.7-hardened-r1 #1 SMP Fri Jan 3 23:13:48 EST 2014
>> x86_64 Intel(R) Xeon(R) CPU 5160 @ 3.00GHz GenuineIntel GNU/Linux
>>
>> Here's the hardened portion of the kernel .config for the web server
>> that blew up today. The config for the mail server should be almost
>> identical. I maintain the kernel configs for different hardware in
>> different repos, but unless I've made a mistake, the hardening options
>> should be the same.
>>
>
> I encourage you to upgrade your kernel to the latest available in the
> tree. Even if its keyworded currently. Such things pop up sometimes, come
> and go. Grsec/PaX developers (spender/pipacs/ephox) fixes most of these
> pretty quickly. I would also check out grsecurity support forums.
I think I ran into this, too, in 3.11. It takes a few days of uptime before
it happens. Running 3.13.x now on my x64 machine and haven't ran into it
again. So I second the suggestion to upgrade your kernel.
--
Joshua Kinard
Gentoo/MIPS
kumba@gentoo.org
4096R/D25D95E3 2011-03-28
"The past tempts us, the present confuses us, the future frightens us. And
our lives slip away, moment by moment, lost in that vast, terrible in-between."
--Emperor Turhan, Centauri Republic
next prev parent reply other threads:[~2014-05-10 11:14 UTC|newest]
Thread overview: 13+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-05-09 15:15 [gentoo-hardened] Weird coincidental PAX crashes Michael Orlitzky
2014-05-09 15:29 ` Mark Gomersbach
2014-05-09 15:39 ` Michael Orlitzky
2014-05-09 17:46 ` "Tóth Attila"
2014-05-10 11:14 ` Joshua Kinard [this message]
2014-05-10 11:39 ` Michael Orlitzky
2014-05-10 13:43 ` Anthony G. Basile
2014-05-13 19:39 ` Joshua Kinard
2014-05-15 13:11 ` Anthony G. Basile
2014-05-10 16:37 ` Mark Gomersbach
-- strict thread matches above, loose matches on Subject: below --
2014-05-15 13:48 PaX Team
2014-05-15 15:22 ` Michael Orlitzky
2014-05-15 13:49 PaX Team
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=536E0A15.7070603@gentoo.org \
--to=kumba@gentoo.org \
--cc=gentoo-hardened@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox