[SOLVED]Grsecurity bruteforce & Google Chrome

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.

[SOLVED]Grsecurity bruteforce & Google Chrome

Postby jacekalex » Fri Sep 09, 2016 9:59 pm

Hi

My OS:
Code: Select all
Linux version 4.7.3-gr1 (root@localhost) (gcc version 4.9.3 (Gentoo Hardened 4.9.3 p1.3, pie-0.6.3) ) #1 SMP PREEMPT Thu Sep 8 19:26:31 CEST 2016

Grsec: grsecurity-3.1-4.7.3-201609072139.patch

Chrome:
Code: Select all
www-client/google-chrome-unstable-55.0.2853.0


When I try to run Google Chrome:

Dmesg says:
Code: Select all
[16969.515122] grsec: bruteforce prevention initiated due to crash of /opt/google/chrome-unstable/chrome against uid 1000, banning suid/sgid execs for 15 minutes.  Please investigate the crash report for /opt/google/chrome-unstable/chrome[chrome-sandbox:19397] uid/euid:1000/0 gid/egid:1000/1000, parent /opt/google/chrome-unstable/chrome[chrome:19372] uid/euid:1000/1000 gid/egid:1000/1000


For earlier kernels grsec this problem did not occur. :)

Cheers
8)
Last edited by jacekalex on Sat Sep 10, 2016 4:44 pm, edited 1 time in total.
jacekalex
 
Posts: 39
Joined: Tue Jan 11, 2011 2:16 pm

Re: Grsecurity bruteforce & Google Chrome

Postby spender » Sat Sep 10, 2016 7:41 am

The grsecurity code hasn't changed, you've just upgraded to a buggy version of Chrome that's crashing on you and triggering the bruteforce logic.

-Brad
spender
 
Posts: 2185
Joined: Wed Feb 20, 2002 8:00 pm

Re: Grsecurity bruteforce & Google Chrome

Postby jacekalex » Sat Sep 10, 2016 4:44 pm

I thought so too, but I wanted to make sure.

Thanks
jacekalex
 
Posts: 39
Joined: Tue Jan 11, 2011 2:16 pm


Return to grsecurity support