| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA256 |
| 3 |
|
| 4 |
|
| 5 |
Well, I was watching logs with xtail when the crash occurred. I have a |
| 6 |
cron job that calls eix-sync each day at 11:00. The log entries were sent |
| 7 |
to xtail, but didn't get synchronised to disk, so there's a gap. The box |
| 8 |
went dark right after that. |
| 9 |
|
| 10 |
I rebooted it and set lilo to boot the previous kernel. It died again |
| 11 |
during shutdown <no console to output info to though, as the box is |
| 12 |
headless>. |
| 13 |
|
| 14 |
What would you suggest running strace on? Maybe init with the '-f' flag |
| 15 |
(to follow child processes)? I'll have some time to take a closer look |
| 16 |
this weekend and will try to get additional information. |
| 17 |
|
| 18 |
I'll also test with 2.6.24 and recheck my configs. |
| 19 |
|
| 20 |
As for web-rsync, I've never used it nor had the need... eix-sync has been |
| 21 |
working fine for several months now. |
| 22 |
|
| 23 |
|
| 24 |
brant williams |
| 25 |
FCAA CDCA 20BC 3925 D634 F5C4 7420 6784 4DEB 6002 |
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
On Wed, 6 Feb 2008, Steve Buzonas wrote: |
| 30 |
|
| 31 |
> Date: Wed, 6 Feb 2008 20:09:20 -0500 |
| 32 |
> From: Steve Buzonas <steve.buzonas@×××××.com> |
| 33 |
> Reply-To: gentoo-hardened@l.g.o |
| 34 |
> To: gentoo-hardened@l.g.o |
| 35 |
> Subject: Re: [gentoo-hardened] pax, core2duo, suspicious activity |
| 36 |
> |
| 37 |
> On Feb 6, 2008 8:57 AM, brant williams <brant@×××××.net> wrote: |
| 38 |
> |
| 39 |
>> -----BEGIN PGP SIGNED MESSAGE----- |
| 40 |
>> Hash: SHA256 |
| 41 |
>> |
| 42 |
>> |
| 43 |
>> Hi paxguy =) |
| 44 |
>> |
| 45 |
>> I experienced the same issue after upgrading to |
| 46 |
>> hardened-sources-2.6.23-r4 this past weekend. Previously, I'd been using |
| 47 |
>> hardened-sources-2.6.22-r8 for ~30 days with no discernable problems. |
| 48 |
>> After checking both config files, though, it looks like I may have rushed |
| 49 |
>> through too quickly (sdiff attached). |
| 50 |
>> |
| 51 |
>> I've got a screenshot of the log entry that occurred right before the |
| 52 |
>> crash (png attached), and can provide the System.map and kernel image to |
| 53 |
>> you off-list if that would help. |
| 54 |
>> |
| 55 |
>> Thank you for your efforts. |
| 56 |
>> |
| 57 |
>> |
| 58 |
>> brant williams |
| 59 |
>> FCAA CDCA 20BC 3925 D634 F5C4 7420 6784 4DEB 6002 |
| 60 |
>> |
| 61 |
>> |
| 62 |
>> |
| 63 |
>> On Wed, 6 Feb 2008, pageexec@××××××××.hu wrote: |
| 64 |
>> |
| 65 |
>>> Date: Wed, 06 Feb 2008 13:49:12 +0200 |
| 66 |
>>> From: pageexec@××××××××.hu |
| 67 |
>>> Reply-To: gentoo-hardened@l.g.o |
| 68 |
>>> To: gentoo-hardened@l.g.o |
| 69 |
>>> Subject: Re: [gentoo-hardened] pax, core2duo, suspicious activity |
| 70 |
>>> |
| 71 |
>>> On 6 Feb 2008 at 10:24, wrote: |
| 72 |
>>> |
| 73 |
>>>> SSH session droped, all daemons stopping too. On the monitor a get |
| 74 |
>>>> "Suspicious activity.... bla-bla PaX... bla-bla... |
| 75 |
>>> |
| 76 |
>>> can you post the precise message? even a screenshot would be fine |
| 77 |
>>> (try to boot with a high resolution frame buffer mode to get as much |
| 78 |
>>> info as you can). also i'll need the System.map file and probably |
| 79 |
>>> vmlinux as well. |
| 80 |
>>> |
| 81 |
>>>> When I recompile kernel without PaX, system works normal withouts |
| 82 |
>>>> kernel-panics. |
| 83 |
>>> |
| 84 |
>>> did you determine which PaX feature triggers the problem? |
| 85 |
>>> |
| 86 |
>>> also, would be nice if you could try out the 2.6.24 test patch. |
| 87 |
>>> |
| 88 |
>>> PS: if you enable HIGHMEM64G/PAGEEXEC then PaX will make use of |
| 89 |
>>> the NX bit. |
| 90 |
>>> |
| 91 |
>>> -- |
| 92 |
>>> gentoo-hardened@l.g.o mailing list |
| 93 |
>>> |
| 94 |
>>> |
| 95 |
>> -----BEGIN PGP SIGNATURE----- |
| 96 |
>> Version: GnuPG v2.0.7 (GNU/Linux) |
| 97 |
>> |
| 98 |
>> iD8DBQFHqbzkdCBnhE3rYAIRCBqGAKCdKtGnYzyj2SD3AefLY4w+zeQD1wCfZDra |
| 99 |
>> WPNDEB3qSwPK2N4Vfy3spwg= |
| 100 |
>> =kVu0 |
| 101 |
>> -----END PGP SIGNATURE----- |
| 102 |
> |
| 103 |
> |
| 104 |
> What occurs before the crash? Can you do strace? Does emerge-webrsync |
| 105 |
> work? |
| 106 |
> |
| 107 |
> -- |
| 108 |
> Thank you, |
| 109 |
> |
| 110 |
> Steve Buzonas Jr. |
| 111 |
> |
| 112 |
-----BEGIN PGP SIGNATURE----- |
| 113 |
Version: GnuPG v2.0.7 (GNU/Linux) |
| 114 |
|
| 115 |
iD8DBQFHqw6odCBnhE3rYAIRCBM8AKCHa/Ne4RIoV665LIu66Ikzfcbi6gCggVrT |
| 116 |
KWlzWnq7GY/RTSz/T6s1I5I= |
| 117 |
=6WM5 |
| 118 |
-----END PGP SIGNATURE----- |
| 119 |
-- |
| 120 |
gentoo-hardened@l.g.o mailing list |
Archives