TPE

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.

TPE

Postby shaman » Mon Aug 02, 2004 4:04 am

Hi.

Can anyone explain what is TPE?
shaman
 
Posts: 7
Joined: Wed Jun 02, 2004 7:27 am

Re: TPE

Postby hightower » Mon Aug 02, 2004 7:23 am

shaman wrote:Hi.

Can anyone explain what is TPE?

Please read the help text in your kernel configuration about TPE (make menuconfig|make xconfig etc).

ciao, Marc
hightower
 
Posts: 49
Joined: Wed Mar 06, 2002 11:36 am

Re: TPE

Postby Oscon » Mon Aug 02, 2004 4:46 pm

shaman wrote:Hi.

Can anyone explain what is TPE?


A small "theoretical" example:

a linux workstation with 2.4 kernel. "turd" is username in this "linux".
The "turd"'s writable filesystems is "mounted with noexec"...

"turd" download a "local kernel panic" exploit. "turd" hate the admin. :)

If "turd" execute this exploit.... (example /lib/....so ~/exploit).
linux is killed.

But if the kernel is:
2.4.x-grsec with TPE and tpe_gid (example 2067)...

and "turd" execute now the exploit: (example /lib/...so ~/exploit) then
"segmentation fault", and in logfile : denied untrusted exec of "~/exploit":"turd"'s uid...
Oscon
 
Posts: 44
Joined: Fri Jun 11, 2004 6:32 pm


Return to grsecurity support