Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

GNAP + squid -- pax + grsec
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Gentoo on Alternative Architectures
View previous topic :: View next topic  
Author Message
somnium2k5
n00b
n00b


Joined: 09 Aug 2005
Posts: 2
PostPosted: Wed Aug 10, 2005 5:49 pm    Post subject: GNAP + squid -- pax + grsec Reply with quote
at first sorry for my bad english!

my gnap runs nearly perfect!
but what about grsec and pax? it runs too perfect.
i created extensions for squid, bind and quagga.
but only squid won't run, it exits with the log: grsec: From 10.194.36.110: signal 6 sent to /mnt/livecd/usr/sbin/squid ...
i installed chpax, gradm an paxctl, but i wasn't able to set the flags because of readonly-fs.
so i disabled the flags inside the gnap-mycustomcore.tar. no success :-(

what can i do to run squid on my gnap?
should i recompile the kernel with pax an grsec as modules, so that i can controll them by sysctl -w ?
_________________
one time you all will be emulated by gentoo
Back to top
View user's profile Send private message
Koon
Retired Dev
Retired Dev


Joined: 10 Dec 2002
Posts: 518
PostPosted: Thu Aug 11, 2005 8:24 am    Post subject: Re: GNAP + squid -- pax + grsec Reply with quote
somnium2k5 wrote:
i created extensions for squid, bind and quagga.
but only squid won't run, it exits with the log: grsec: From 10.194.36.110: signal 6 sent to /mnt/livecd/usr/sbin/squid ...


One way to go is to search why squid fails under grsec, and try to fix it...

Quote:
i installed chpax, gradm an paxctl, but i wasn't able to set the flags because of readonly-fs.
so i disabled the flags inside the gnap-mycustomcore.tar. no success :-(

what can i do to run squid on my gnap?
should i recompile the kernel with pax an grsec as modules, so that i can controll them by sysctl -w ?

The other way to go is to rebuild a GNAP core with a different kernel, profile, or add a few commands to the fsscript (which is run on the target filesystem, without readonly-fs restrictions you have once booted).

The new documentation set in GNAP 1.8 (which is just out) is much clearer, have a look.

-K
Back to top
View user's profile Send private message
brendaniabbatis
n00b
n00b


Joined: 25 Nov 2003
Posts: 54
Location: Sacramento, CA, USA
PostPosted: Mon Aug 15, 2005 6:23 pm    Post subject: Reply with quote
[stupid question]What's a GNAP?[/stupid question]
Back to top
View user's profile Send private message
widan
Veteran
Veteran


Joined: 07 Jun 2005
Posts: 1512
Location: Paris, France
PostPosted: Mon Aug 15, 2005 8:47 pm    Post subject: Reply with quote
brendaniabbatis wrote:
What's a GNAP?

A Gentoo Network APpliance.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Gentoo on Alternative Architectures All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy