| 1 |
Hi, |
| 2 |
|
| 3 |
I'm trying to get kaspersky AV (4.0.3.1) to run on a gentoo box with active |
| 4 |
gr security Segmentation based exec protection. |
| 5 |
|
| 6 |
Problem: |
| 7 |
* The kaspersky scanner / scanner daemon processess triggers the pax |
| 8 |
protection |
| 9 |
* The executables are statically linked |
| 10 |
* The executables check for modification, i.e. after modifying with |
| 11 |
chpax they no longer run. |
| 12 |
|
| 13 |
I expect that the triggering code would be a gcc trampoline, so compiling |
| 14 |
with trampoline + automatic detection turned on might work - but it's not a |
| 15 |
very good solution since it affects all executables on the system. |
| 16 |
|
| 17 |
Is there any way of running an executable with modified grsecurity options |
| 18 |
without changing the on-disk file with chpax? |
| 19 |
|
| 20 |
Thanks, Martin |
| 21 |
|
| 22 |
-- |
| 23 |
gentoo-hardened@g.o mailing list |
Archives