mryoung at soundbomb
Apr 21, 2012, 4:24 PM
Post #1 of 1
(227 views)
Permalink
|
|
Tips for VMware Workstation with Hardened Profile ?
|
|
Hi,
I've just build vmware-workstation on a hardened box with 3.0.4 hardened
kernel ...
I emerged the vmware product with server flag, to be able to remotely
connect to it ...
vmware init script start, and load modules into kernel perfectly ... but,
When i try to start the vmware-workstation-server init script, i get the
following grsec log:
Apr 22 01:00:23 kernel: grsec: From denied access of range 0 -> 100000
in /dev/mem by
/opt/vmware/lib/vmware/bin/vmware-hostd[vmware-hostd:11737] uid/euid:0/0
gid/egid:0/0, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0
Apr 22 01:02:21 kernel: grsec: From : Abort occurred at
0000000000002ed3 in
/opt/vmware/lib/vmware/bin/vmware-vim-cmd[vmware-vim-cmd:11987]
uid/euid:0/0 gid/egid:0/0, parent
/opt/vmware/lib/vmware/bin/vmware-vim-cmd[vmware-vim-cmd:11886]
uid/euid:0/0 gid/egid:0/0
Apr 22 01:02:21 kernel: grsec: From denied resource overstep by
requesting 4096 for RLIMIT_CORE against limit 0 for
/opt/vmware/lib/vmware/bin/vmware-vim-cmd[vmware-vim-cmd:11987]
uid/euid:0/0 gid/egid:0/0, parent
/opt/vmware/lib/vmware/bin/vmware-vim-cmd[vmware-vim-cmd:11886]
uid/euid:0/0 gid/egid:0/0
After some googling (without any success), I decided to post here to get
some advices from people already running this product with the same
configuration (I'm not sure paxctl will change anything here)...
Anyone around can help ?
Thanks in advance for your answer.
Cya
--
. mRyOuNg :: [ SoundBomB ] .
mail: mryoung [at] soundbomb
web : mryoung.soundbomb.net
|
