Page 1 of 1

[SOLVED]Grsecurity bruteforce & Google Chrome

PostPosted: Fri Sep 09, 2016 9:59 pm
by jacekalex
Hi

My OS:
Code: Select all
Linux version 4.7.3-gr1 (root@localhost) (gcc version 4.9.3 (Gentoo Hardened 4.9.3 p1.3, pie-0.6.3) ) #1 SMP PREEMPT Thu Sep 8 19:26:31 CEST 2016

Grsec: grsecurity-3.1-4.7.3-201609072139.patch

Chrome:
Code: Select all
www-client/google-chrome-unstable-55.0.2853.0


When I try to run Google Chrome:

Dmesg says:
Code: Select all
[16969.515122] grsec: bruteforce prevention initiated due to crash of /opt/google/chrome-unstable/chrome against uid 1000, banning suid/sgid execs for 15 minutes.  Please investigate the crash report for /opt/google/chrome-unstable/chrome[chrome-sandbox:19397] uid/euid:1000/0 gid/egid:1000/1000, parent /opt/google/chrome-unstable/chrome[chrome:19372] uid/euid:1000/1000 gid/egid:1000/1000


For earlier kernels grsec this problem did not occur. :)

Cheers
8)

Re: Grsecurity bruteforce & Google Chrome

PostPosted: Sat Sep 10, 2016 7:41 am
by spender
The grsecurity code hasn't changed, you've just upgraded to a buggy version of Chrome that's crashing on you and triggering the bruteforce logic.

-Brad

Re: Grsecurity bruteforce & Google Chrome

PostPosted: Sat Sep 10, 2016 4:44 pm
by jacekalex
I thought so too, but I wanted to make sure.

Thanks