[grsec] grsec for vmsplice-bug-fixed Linux 2.6?
Marc Schiffbauer
marc at schiffbauer.net
Thu Feb 14 10:40:27 EST 2008
* Brad Spengler schrieb am 14.02.08 um 03:02 Uhr:
> On Thu, Feb 14, 2008 at 03:16:01AM +0100, Marc Schiffbauer wrote:
> > * Lubomir Host schrieb am 13.02.08 um 22:43 Uhr:
> > > I like to use only awk instead of 'cat | grep | awk' combo:
> > >
> > > echo -e '\xc3' | dd of=/dev/kmem bs=1 count=1 seek=$((0x`awk
> > > '/sys_vmsplice/ { print $1; }' /proc/kallsyms`))
> >
> > What does this do?
>
> It removes the functionality of the vmsplice system call by overwriting
> the first byte of the function with the 'retn' instruction.
Thanks for the explanation.
But my grsec enabled kernels do not have /proc/kallsyms .. so this
does not work. Are there alternatives?
pluto:~# ls /proc/kallsyms
ls: /proc/kallsyms: No such file or directory
pluto:~#
-Marc
--
8AAC 5F46 83B4 DB70 8317 3723 296C 6CCA 35A6 4134
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://grsecurity.net/pipermail/grsecurity/attachments/20080214/bb518c75/attachment.pgp
More information about the grsecurity
mailing list