Re: FreeBSD trusted execution system: beta testers wanted

• Previous message: Colin Percival: "Re: no patch, is there a problem"
• In reply to: Oleg Palij: "Re: FreeBSD trusted execution system: beta testers wanted"
• Next in thread: Christian S.J. Peron: "RE: FreeBSD trusted execution system: beta testers wanted"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 18 Mar 2005 13:46:58 +0200
To: Oleg Palij <o.palij@dp.uz.gov.ua>

VMWare port gives error when mac.chkexec is enabled but not enforced:

# sysctl security.mac.chkexec
security.mac.chkexec.enable: 1
security.mac.chkexec.enforce: 0
...

# cd /usr/ports/emulators/vmware3 && make
===> Extracting for vmware3-3.2.1.2242_10,1
=> Checksum OK for VMware-workstation-3.2.1-2242.tar.gz.
=> Checksum OK for vmmon-only-3.2.1-20040727.tar.gz.
=> Checksum OK for vmnet-only-3.2.1-20040705.tar.gz.
vmware-distrib/INSTALL: Can't update time for vmware-distrib/INSTALL:
Input/output error
vmware-distrib/vmware-install.pl: Can't update time for
vmware-distrib/vmware-install.pl: Input/output error
*** Error code 1

Stop in /usr/ports/emulators/vmware3.
*** Error code 1

Stop in /usr/ports/emulators/vmware3.

# sysctl security.mac.chkexec.enable=0
cd /usr/ports/emulators/vmware3 && make

WMWare compiles fine.

On Wed, 16 Mar 2005 08:54:13 +0200, Oleg Palij <o.palij@dp.uz.gov.ua> wrote:
> Hi!
>
> Thanks for developing such interesting feature :) !
>
> But I have some problems, which I cant understand.
>
> # sysctl security.mac.chkexec.enforce=0
> security.mac.chkexec.enforce: 1 -> 0
>
> # setfhash /usr/local/sbin/logrotate
> # getfhash /usr/local/sbin/logrotate
> /usr/local/sbin/logrotate: sha1 78513a038cd9416f2be710b6732369b96874b364
>
> # sysctl security.mac.chkexec.enforce=1
> security.mac.chkexec.enforce: 0 -> 1
>
> # /usr/local/sbin/logrotate
> bash: /usr/local/sbin/logrotate: Operation not permitted
>
> # getfhash /usr/local/sbin/logrotate
> /usr/local/sbin/logrotate: sha1 78513a038cd9416f2be710b6732369b96874b364
>
> How can I see what exactly goes wrong ???
>
> Oleg.
> _______________________________________________
> freebsd-security@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
>
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

• Previous message: Colin Percival: "Re: no patch, is there a problem"
• In reply to: Oleg Palij: "Re: FreeBSD trusted execution system: beta testers wanted"
• Next in thread: Christian S.J. Peron: "RE: FreeBSD trusted execution system: beta testers wanted"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: if_bridge turns off checksum offload of members? ... that when I add em network card to bridge the checksum> offload is turned off. ... Should I care about csum in bridge mode? ... *** Error code 1 ... (freebsd-net) Snort and FreeBSD 6.2 ... FLEXRESP2 patch file does not incorporate cleanly.*** Error code 1 ... => MD5 Checksum OK for snort-2.7.0.1.tar.gz. ... => No MD5 checksum recorded for sp_respond2.diff.gz. ... (freebsd-questions) port tree fetch errors ... Input/output error ... Cannot calculate checksum for ... Checkout ports/devel/Makefile ... I've also tried different cvsup servers also, ... (freebsd-questions) Re: freebsd ports X11 dependencies kaputt - was tun ? ... Christoph Weber-Fahr ... => MD5 Checksum OK for vim/7.0.001. ... => SHA256 Checksum OK for vim/7.0.001. ... *** Error code 1 ... (de.comp.os.unix.bsd) Re: port tree fetch errors ... Input/output error ... Cannot calculate checksum for ... Checkout ports/devel/Makefile ... corrupted filesystem, or your hard drive is dying. ... (freebsd-questions)