Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-hardened

From: NoMiS <NoMiS@×××××××××××.com>
To: gentoo-hardened@l.g.o
Subject: Re: [gentoo-hardened] Problems emerging apache
Date: Sat, 18 Sep 2004 10:11:20
Message-Id: 1095509626.4109.3.camel@Dukla
In Reply to: [gentoo-hardened] Problems emerging apache by Jansson Fredrik
1 To fix this I did the following, first install apache 2.50 witch worked
2 perfectly after that upgrade to the latest version. sounds weird but it
3 worked for me ( saw it upgrading with the world and was quiete supprised
4 it worked thsi time)
5
6 Greetings
7
8 NoMiS
9
10
11 On Fri, 2004-09-17 at 16:09, Jansson Fredrik wrote:
12 > I get an error when trying to emerge apache:
13 > .
14 > .
15 > .
16 > checking for entropy source... configure: error: /dev/urandom not found
17 > or
18 > unreadable.
19 >
20 > when looking at the avc messages I see:
21 > .
22 > .
23 > .
24 > audit(1095437044.773:0): avc: denied { read } for pid=11091
25 > exe=/bin/cat
26 > name=urandom dev=hda2 ino=164173 scontext=frja:sysadm_r:portage_t
27 > tcontext=system_u:object_r:urandom_device_t tclass=chr_file
28 > audit(1095437044.784:0): avc: denied { read } for pid=11097
29 > exe=/bin/grep
30 > name=urandom dev=hda2 ino=164173 scontext=frja:sysadm_r:portage_t
31 > tcontext=system_u:object_r:urandom_device_t tclass=chr_file
32 > audit(1095437044.794:0): avc: denied { read } for pid=11098
33 > exe=/bin/sed
34 > name=urandom dev=hda2 ino=164173 scontext=frja:sysadm_r:portage_t
35 > tcontext=system_u:object_r:urandom_device_t tclass=chr_file
36 > audit(1095437044.805:0): avc: denied { read } for pid=11099
37 > exe=/bin/cat
38 > name=urandom dev=hda2 ino=164173 scontext=frja:sysadm_r:portage_t
39 > tcontext=system_u:object_r:urandom_device_t tclass=chr_file
40 > audit(1095437044.813:0): avc: denied { read } for pid=11103
41 > exe=/bin/sort
42 > name=urandom dev=hda2 ino=164173 scontext=frja:sysadm_r:portage_t
43 > tcontext=system_u:object_r:urandom_device_t tclass=chr_file
44 > audit(1095437045.069:0): avc: denied { read } for pid=11279
45 > exe=/bin/rm
46 > name=urandom dev=hda2 ino=164173 scontext=frja:sysadm_r:portage_t
47 > tcontext=system_u:object_r:urandom_device_t tclass=chr_file
48 > audit(1095437045.076:0): avc: denied { read } for pid=11280
49 > exe=/bin/rm
50 > name=urandom dev=hda2 ino=164173 scontext=frja:sysadm_r:portage_t
51 > tcontext=system_u:object_r:urandom_device_t tclass=chr_file
52 >
53 > It seems like "emerge launched" apps can't read /dev/urandom. Do I have
54 > to relabel emerge, sandbox, /dev/urandom... ?
55 >
56 > Have a nice weekend!
57 >
58 > Best regards
59 > Fredrik Jansson
60 >
61 >
62 > --
63 > gentoo-hardened@g.o mailing list
64 >
65 >
66 >
67
68
69 --
70 gentoo-hardened@g.o mailing list
Report Message
Find on MARC Find on Google Groups