[grsec] mprotect, libapreq2

[xyon]

Hi everyone,

I'm getting the famous "permission denied" due to mprotect after installing 
libapreq2 on CentOS 4.5:

Cannot load /etc/httpd/modules/mod_apreq2.so into server: libapreq2.so.2: 
cannot enable executable stack as shared object requires: Permission denied

Of course, turning off mprotect on httpd rids me of the error, but I feel 
extremely uneasy disabling mprotect on a publicly visible service. Does 
anyone have alternative suggestions? I have all other pax features enabled in 
the kernel (except trampolines), are they sufficient w/o mprotect in your 
opinion?