[grsec] RLIMIT_MEMLOCK resource overstep by ntpd
David Cannings
lists at edeca.net
Thu May 12 10:03:47 EDT 2005
John Logsdon wrote:
> (ntp-4.2.0.a.20040617-4, CentOS4, 2.6.11.7-grsec, grsec not enabled)
>
> I see from the PaX reply on the Gentoo hardened list (24 Jan 2005) that
> this report is due to extending the check to userland, which seems
> logical.
>
> So it appears that ntpd (running under uid/gid=38) has a problem. In
> fact since the clock doesn't appear to have changed, this message implies
> that ntpd hasn't worked either, which is more serious if it is true.
I switched to openntpd when I had similar trouble a few months back and
I haven't had any problems since.
David
More information about the grsecurity
mailing list