Hi,
I get the following error message every few seconds in my syslog and was wondering how to get rid of it:
grsec: denied kernel module auto-load of ansi_cprng by uid 1000
grsec: denied kernel module auto-load of drbg by uid 1000
I am running archlinux with the grsec kernel
denied kernel module auto-load
3 posts
• Page 1 of 1
denied kernel module auto-load
by fred9 » Mon Jun 13, 2016 6:53 pm
- fred9
- Posts: 2
- Joined: Mon Jun 13, 2016 6:31 pm
Re: denied kernel module auto-load
by spender » Mon Jun 13, 2016 7:12 pm
First ensure these are legitimate requests. If they're caused by one of your apps using the kernel's crypto API, the way to solve it is easy. Simply add:
modprobe ansi_cprng
modprobe drbg
to some init script, or otherwise force the loading of those modules as root during boot. Grsecurity's MOD_HARDEN feature prevents the runtime auto-loading of modules by unprivileged users for security reasons.
-Brad
modprobe ansi_cprng
modprobe drbg
to some init script, or otherwise force the loading of those modules as root during boot. Grsecurity's MOD_HARDEN feature prevents the runtime auto-loading of modules by unprivileged users for security reasons.
-Brad
- spender
- Posts: 2185
- Joined: Wed Feb 20, 2002 8:00 pm
Re: denied kernel module auto-load
by fred9 » Wed Jun 15, 2016 9:18 am
How do I find out what process requested those modules?
- fred9
- Posts: 2
- Joined: Mon Jun 13, 2016 6:31 pm
3 posts
• Page 1 of 1