From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1KywsZ-00077T-Fx for garchives@archives.gentoo.org; Sat, 08 Nov 2008 23:06:07 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 69D75E03B2; Sat, 8 Nov 2008 23:06:06 +0000 (UTC) Received: from atoth.sote.hu (atoth.sote.hu [195.111.75.211]) by pigeon.gentoo.org (Postfix) with ESMTP id 1E95DE03B2 for ; Sat, 8 Nov 2008 23:06:05 +0000 (UTC) Received: from atoth.sote.hu (apache@localhost [127.0.0.1]) by atoth.sote.hu (8.14.2/8.14.2/atoth@atoth.sote.hu) with ESMTP id mA8N5wxP030905 for ; Sun, 9 Nov 2008 00:06:00 +0100 Received: from 62.165.243.164 (SquirrelMail authenticated user atoth) by atoth.sote.hu with HTTP; Sun, 9 Nov 2008 00:06:00 +0100 (CET) Message-ID: In-Reply-To: <491618C9.23516.4D73A01@pageexec.freemail.hu> References: <20080929165702.GG17944@home.power>, <49160F1B.17014.4B169F3@pageexec.freemail.hu>, <20081108224050.GD10034@home.power> <491618C9.23516.4D73A01@pageexec.freemail.hu> Date: Sun, 9 Nov 2008 00:06:00 +0100 (CET) Subject: Re: [gentoo-hardened] what RLIMIT_STACK mean? From: atoth@atoth.sote.hu To: gentoo-hardened@lists.gentoo.org User-Agent: SquirrelMail/1.4.16 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@lists.gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain;charset=utf-8 X-Priority: 3 (Normal) Importance: Normal X-Spam-Status: No, score=-1.1 required=5.0 tests=ALL_TRUSTED,AWL, DNS_FROM_SECURITYSAGE autolearn=disabled version=3.2.1-gr1 X-Spam-Checker-Version: SpamAssassin 3.2.1-gr1 (2007-05-02) on atoth.sote.hu X-Virus-Scanned: ClamAV version 0.94, clamav-milter version 0.94 on atoth X-Virus-Status: Clean X-List-Milter: non-list mail Content-Transfer-Encoding: quoted-printable X-Archives-Salt: 7ebd8a15-f0d2-4808-8828-5a9bbcf73943 X-Archives-Hash: 51fea868c131e43d5479eb43d0196507 Some error messages like this shows up from time to time every twice mont= hs: " grsec: (root:U:/bin/rm) denied resource overstep by requesting 115310592 for RLIMIT_STACK against limit 8388608 for /[rm:32461] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:32446] uid/euid:0/0 gid/egid:0/0 " That might be related to the same issue. Regards, Dw. --=20 dr T=C3=B3th Attila, Radiol=C3=B3gus Szakorvos jel=C3=B6lt, 06-20-825-805= 7, 06-30-5962-962 Attila Toth MD, Radiologist in Training, +36-20-825-8057, +36-30-5962-962 On Szo, November 8, 2008 22:55, pageexec@freemail.hu wrote: > On 9 Nov 2008 at 0:40, Alex Efros wrote: > >> The problem is still here, I'm on latests hardened kernel: >> 2.6.25-hardened-r8. >> Not sure about version of grsec/pax patches, probably it's easier for >> you >> to check this, you should know where to look. :) > > hmm that's a bit too old kernel for us, can you try your .config with a > more > recent one, preferably .27.5 that spender just put up on his test page? > what > is really weird is that you're not seeing segfaults, only grsec's > reporting, > that's the part that doesn't make sense to me yet (also that noone > reported > similar problems so far). > >