gmane.linux.rsbac

daz

Jens Kasten — 2013-06-19T16:01:53

Hi list,

I get tons of this entries in the logfile.

Wed Jun 19 17:59:30 2013 :70031845741|daz_reset_scanned(): pid 15593 
(rklogd), resetting scanned status!

Jens

kernel build

Jens Kasten — 2013-06-18T05:35:56

Hi list,

i try the latest kernel linux-3.9.y (.6)
I got the follow compile errors.

rsbac/adf/adf_main.c: In function ‘rsbac_fake_uid’:
rsbac/adf/adf_main.c:3204:8: error: wrong type argument to unary 
exclamation mark
rsbac/adf/adf_main.c:3207:7: error: incompatible types when returning 
type ‘kuid_t’ but ‘rsbac_uid_t’ was expected
rsbac/adf/adf_main.c:3213:9: error: incompatible types when returning 
type ‘kuid_t’ but ‘rsbac_uid_t’ was expected
rsbac/adf/adf_main.c:3225:9: error: incompatible types when returning 
type ‘kuid_t’ but ‘rsbac_uid_t’ was expected
rsbac/adf/adf_main.c:3233:11: error: incompatible types when returning 
type ‘kuid_t’ but ‘rsbac_uid_t’ was expected
rsbac/adf/adf_main.c: In function ‘rsbac_fake_euid’:
rsbac/adf/adf_main.c:3243:8: error: wrong type argument to unary 
exclamation mark
rsbac/adf/adf_main.c:3246:7: error: incompatible types when returning 
type ‘kuid_t’ but ‘rsbac_uid_t’ was expected
rsbac/adf/adf_main.c:3253:9: error: in

wrong load

Jens Kasten — 2013-06-04T18:55:49

Hi list,

I guess that the value what is showing by top is wrong.
See attachment.

Kernel:
Linux jaschtschik 3.2.45-rsbac-3+ #4 SMP Mon Jun 3 11:26:41 CEST 2013
x86_64 AMD Athlon(tm) 64 X2 Dual Core Processor 3800+ AuthenticAMD
GNU/Linux

Grüße
Jens
_______________________________________________
rsbac mailing list
rsbac< at >rsbac.org
http://www.rsbac.org/mailman/listinfo/rsbac

nfs

igraltist — 2013-06-03T09:59:33

No, is the same.
I also cannot kill this process with ctrl + c. Have on other shell kill
this process.

nfs

Jens Kasten — 2013-06-03T07:21:53

Hi list,

I try on kernel 3.2.45 to get nfs working but its fail.
So far all is working but when I on client side on the mounted area a
strace touch /my/nfs/testfile its hangs on open the file. 
I get no errors in any logfile.

Grüße
Jens  



_______________________________________________
rsbac mailing list
rsbac< at >rsbac.org
http://www.rsbac.org/mailman/listinfo/rsbac

linux-3.9.y

Jens Kasten — 2013-05-22T21:42:30

Hi,

latest pull on linux-3.9.y(3.9.3) produce this error.
 
rsbac/data_structures/gen_lists.c: In Funktion »rsbac_list_ta_commit«:
rsbac/data_structures/gen_lists.c:8166:29: Fehler: Ungültige Operanden
für binäres != (haben »rsbac_uid_t« und »kuid_t«)
rsbac/data_structures/gen_lists.c: In Funktion »rsbac_list_ta_forget«:
rsbac/data_structures/gen_lists.c:8276:29: Fehler: Ungültige Operanden
für binäres != (haben »rsbac_uid_t« und »kuid_t«)
rsbac/data_structures/gen_lists.c: In Funktion »rsbac_list_ta_refresh«:
rsbac/data_structures/gen_lists.c:8381:29: Fehler: Ungültige Operanden
für binäres != (haben »rsbac_uid_t« und »kuid_t«)
rsbac/adf/adf_main.c: In Funktion »rsbac_fake_uid«:
rsbac/adf/adf_main.c:3204:8: Fehler: Argument falschen Typs für unäres
Ausrufungszeichen
rsbac/adf/adf_main.c:3207:7: Fehler: unverträgliche Typen bei Rückgabe
von Typ »kuid_t«, aber »rsbac_uid_t« wurde erwartet
rsbac/adf/adf_main.c:3213:9: Fehler: unverträgliche Typen bei Rückgabe
von Typ »k

CVE-2013-2094: Linux privilege escalation

Mikko Rinne — 2013-05-18T01:25:14

Hi,

few days ago a quite serious linux kernel vulnerability was announced that
goes all the way from 2.6.37 to 3.8.9;

-
https://isc.sans.edu/diary/CVE-2013-2094%3A+Linux+privilege+escalation/15803

Has this been fixed in RSBAC enabled kernels?

A problem when pulling linux-3.8.y

Mikko Rinne — 2013-05-13T12:23:08

Hey,

I just ran in to a small problem when trying to clone linux-3.8.y;

# git clone git://rsbac.org/linux-3.8.y linux-3.8
Cloning into 'linux-3.8'...
remote: fatal: Out of memory, realloc failed
remote: aborting due to possible repository corruption on the remote side.
fatal: early EOF
fatal: index-pack failed

I tried cloning with two different comps, both saying that.

But when pulling down linux-3.7.y, that one works. Still thought to mention
this,

Regards,
Mikko Rinne

PaX options required by clamav

Javier Juan Martínez Cabezón — 2013-04-23T22:25:27








After almost being crazy because of this question I finished with my
Dazuko problems related, CONFIG_PAX_USERCOPY and
CONFIG_PAX_MEMORY_UDEREF must be disabled in the kernel config.

I think this point should be introduced in the handbook in DAZ module,
until this will be truth, I expect this could serve as a substitution if
someone search info related about this.

Thanks a lot Amon for your points I got disoriented at all before this.

PD: I think that PaX Softmode should be put in the handbook too, at
least a point that it does only permit anyone to set/read PaX Flags
until my Known without disabling any functionality (one softmode
approach could be for example setting all flags to permxs, but others as
uderef, usercopy etc etc got free to kill whatever they want)

Another question useful to the handbook (I will not finish until our
beloved "handbook" would need 300 kg of paper to print....at least) is
some tips about configuration of su, removing for example pam_rootok
(incompatible with the follo

(no subject)

somayeh razeghi — 2013-03-21T21:54:39

http://ceramiccoatingsfl.com/www.google.searchnew.addnewlife3.php

Invitation to connect on LinkedIn

Asaf Gery — 2013-02-26T00:16:17

LinkedIn
------------



RSBAC,

I'd like to add you to my professional network on LinkedIn.

- Asaf

Asaf Gery
Consultant at My own business
Israel

Confirm that you know Asaf Gery:
https://www.linkedin.com/e/-2xixxg-hdmb1u6n-5m/isd/11294769667/eBlYdvLF/?hs=false&tok=3ZPu5aEmhgllE1

--
You are receiving Invitation to Connect emails. Click to unsubscribe:
http://www.linkedin.com/e/-2xixxg-hdmb1u6n-5m/XL-ahFm3iL_xijDWcV-GJPBJCJ/goo/rsbac%40rsbac%2Eorg/20061/I3736010279_1/?hs=false&tok=0C90nlhZxgllE1

(c) 2012 LinkedIn Corporation. 2029 Stierlin Ct, Mountain View, CA 94043, USA.

git pull has conflicts

Jens Kasten — 2013-02-10T18:40:23

Hi list,

I did a git pull and got this

remote: Counting objects: 2016, done.
remote: Compressing objects: 100% (435/435), done.
remote: Total 1519 (delta 1156), reused 1437 (delta 1077)
Empfange Objekte: 100% (1519/1519), 850.72 KiB | 942 KiB/s, done.
Löse Unterschiede auf: 100% (1156/1156), completed with 481 local
objects.
Von git://rsbac.org/linux-3.7.y
 + 193c6fb...fd76b0f master     -> origin/master  (Aktualisierung
erzwungen)
 * [neue Markierung] v3.7.3     -> v3.7.3
Von git://rsbac.org/linux-3.7.y
 * [neue Markierung] v3.7.4     -> v3.7.4
 * [neue Markierung] v3.7.5     -> v3.7.5
automatische Zusammenführung von kernel/signal.c
automatische Zusammenführung von kernel/sched/core.c
automatische Zusammenführung von kernel/ptrace.c
automatische Zusammenführung von kernel/module.c
automatische Zusammenführung von init/main.c
automatische Zusammenführung von include/linux/sched.h
automatische Zusammenführung von fs/namei.c
KONFLIKT (Inhalt): Zusammenführungskonflikt in fs/namei.c
automatische Zus

3.1.5 kernel crashes when using CAP policy module

Mikko Rinne — 2013-02-05T22:15:00

Description
For a few years now I've been running 2.6.35.1-rsbac without a problem with
FF, CAP, AUTH and ACL policies, but I think it's time to start using kernel
3.x series.

I'm currently installing an RSBAC development server as VMware virtual
server, hoping that after I've installed it, I'm going to port it to
physical server that's currently running 2.6.35.1-rsbac. Probelm is, that
whenever I've tried to run latest 3.1.5 prepatch rsbac-kernel using CAP
policy module, the kernel crashes after first login. I've tried several
different policy settings, and whenever I use CAP, same error occurs. I also
tried to use just CAP policy enabled, and it still crashes. Without a CAP I
haven't got problems, but CAP is a module I really need.

Unfortunatly I don't have a slighest idea how to output kernel crash to
text, so I took a screenshot from VMware console. I've tried this same
kernel over two different ESXi platforms; VMware ESXi 4.1.0, 260247 and
VMware ESXi 5.0.0, 768111. Same error occurs on both platforms

hi Amon

ali valizadeh — 2013-02-01T00:48:20

hey have a look http://bit.ly/W1EUhW

ali

X

Jens Kasten — 2013-01-24T22:19:11

Hi list,

somehow the gdm or xdm freeze the system on restart or shutdown.

I test the linux-3.7.y (3.7.4)

Grüße
Jens

_______________________________________________
rsbac mailing list
rsbac< at >rsbac.org
http://www.rsbac.org/mailman/listinfo/rsbac

Happy New Year!

Jens Kasten — 2012-12-31T02:56:43

Hi list,

i wish all a Happy New Year and a successfully year.

Grüße
Jens

_______________________________________________
rsbac mailing list
rsbac< at >rsbac.org
http://www.rsbac.org/mailman/listinfo/rsbac

Xorg restart

Jens Kasten — 2012-12-12T23:02:58

Hi list,

its seems that on latest git linux-3.6.y the problem that the xorg does
not proper shutdown is solved.

Grüße
Jens

_______________________________________________
rsbac mailing list
rsbac< at >rsbac.org
http://www.rsbac.org/mailman/listinfo/rsbac

reset internal list

Jens Kasten — 2012-11-28T17:37:23

Hi list,

How can I reset the interal list.
I see this in the logfile.

Wed Nov 28 17:31:23 2012 :<4>0000000061|o_read_list(): desc or data size
mismatch on list fd_gen!
Wed Nov 28 17:31:23 2012 :<4>0000000062|estoring list fd_gen from device
254:05 failed with error RSBAC_EINVALIDLIST, unregistering list.
Wed Nov 28 17:31:23 2012 :<4>0000000063|egister_fd_lists(): registering
general list fd_gen for device 254:05 failed with error
RSBAC_EINVALIDLIST!
Wed Nov 28 17:31:23 2012 :<4>0000000064|sbac_mount(): File/Dir ACI
registration failed for dev 254:05, err RSBAC_EINVALIDLIST!


Grüße
Jens


_______________________________________________
rsbac mailing list
rsbac< at >rsbac.org
http://www.rsbac.org/mailman/listinfo/rsbac

rsbac_cap_learn not work

Jens Kasten — 2012-11-26T10:31:50

Hi list,


kernel: 
Linux jaschtschik-pc 3.6.7-rsbac-2 #7 SMP Mon Nov 26 16:39:13 CET 2012
x86_64 Intel(R) Core(TM)2 Quad CPU Q9550 < at > 2.83GHz GenuineIntel
GNU/Linux

rsbac_version:
Tools: 1.4.6, Kernel: 1.4.6, Tools-String: 1.4.6


I add this to boot parameter.

rsbac_cap_learn  

Its looks that is not working the cap learn.
The rsbac-debug show:

cat /proc/rsbac-info/debug | grep cap
rsbac_cap_process_hiding is 1
rsbac_cap_log_missing is 0
rsbac_cap_learn is 1


But the log show:

Mon Nov 26 11:18:24 2012 :<6>0000000208|sbac_adf_request(): request
MODIFY_SYSTEM_DATA, pid 3235, ppid 1, prog_name rtkit-daemon,
prog_file /usr/libexec/rtkit-daemon, uid 104, audit uid 101, target_type
PROCESS, tid 3292(pulseaudio,parent=3291(pulseaudio)), attr none, value
none, result NOT_GRANTED (Softmode) by CAP

Also the in the log on the name rsbac the "r" is missing.
Mon Nov 26 11:18:45 2012 :<6>0000000222|sbac_list_auto_rehash(): 1 lists
rehashed



On workstation randomly the gdm freeze the system while shutdown.

Grüße

user audit

Jens Kasten — 2012-11-25T15:52:19

Hi list,

Could someone please explain the use of audit, thanks.

Grüße
Jens

_______________________________________________
rsbac mailing list
rsbac< at >rsbac.org
http://www.rsbac.org/mailman/listinfo/rsbac

Convert user from PAM to UM not import groups for user

Jens Kasten — 2012-11-25T05:22:07

Hi list,

I user the latest git kernel linux-3.2.y.

rsbac_version: Tools: 1.4.6, Kernel: 1.4.6, Tools-String: 1.4.6

When I convert the users and groups from PAM to UM then my user don't 
have for example the group audio which was befor added to group audio,