Board index Solaris

BSM (c2) on Sol2.1 problems?

BSM (c2) on Sol2.1 problems?

Post by Glenn Bar » Thu, 06 May 1993 06:28:53



hi,
I'm having problems running the Basic Security Module (C2 for
Solaris 2.1).  This is for a standalone SS10mod30 running Solaris 2.1.
I've got the following patches installed:

SUNW_PATCHID=100833-02
SUNW_PATCHID=100884-05
(i've also got the same results running the stock sol2.1 kernel)

The pkgadd worked fine but any auditconfig
fails like so:


+ auditconfig -conf
auditconfig: auditon(2) failed.
Segmentation Fault
+ auditconfig -setpolicy none
auditconfig: auditon(2) failed.
Segmentation Fault
+ auditconfig -setpolicy +cnt
auditconfig: auditon(2) failed.
Segmentation Fault

A subsequent auditd startup fails in a similiar style.

It looks like the c2audit kernel module is installed ok:


 Id Loadaddr  Size Info Rev Module Name
 21 fc2fb800   1fe 186   1  c2audit (C2 audit call)

I've tried this on another sol2.1 system (an lx) and got
the same results.

Anybody else seen this?  If so, any words of wisdom?  Anybody
got this working ok?  If so, what type of sys did it work
ok on?

Send email and i'll summarize if interest warrants.

thanks,
gb

---

Emory University     |  {rutgers,gatech}!emory!glenn                   UUCP

Atlanta,GA 30322-2390|  Voice:  (404)727-5637   Fax:  (404)727-5611

 
 
 
Top

1. BSM (c2) on Sol2.1 problems?

|> I'm having problems running the Basic Security Module (C2 for
|> Solaris 2.1).  This is for a standalone SS10mod30 running Solaris 2.1.
|> I've got the following patches installed:
|>  
|> SUNW_PATCHID=100833-02
|> SUNW_PATCHID=100884-05
|> (i've also got the same results running the stock sol2.1 kernel)
|>  
|> The pkgadd worked fine but any auditconfig
|> fails like so:
|>  

|> + auditconfig -conf
|> auditconfig: auditon(2) failed.
|> Segmentation Fault
|> + auditconfig -setpolicy none
|> auditconfig: auditon(2) failed.
|> Segmentation Fault
|> + auditconfig -setpolicy +cnt
|> auditconfig: auditon(2) failed.
|> Segmentation Fault
|>  
|> A subsequent auditd startup fails in a similiar style.

I just wanted to clarify what happened here.  I investigated the problem and found that
there was no conflict between the two patches (100833 and 100884) as I originally anticipated.
A user error occurred during the pkgadd of bsm.  The user was prompted as follows:

The following files are already installed on the system and are being
used by another package:
        /kernel/sys/c2audit
        /usr/lib/libc2.a
        /usr/lib/libc2.so.1
Do you want to install these conflicting files [y,n,?,q]

The correct answer is y for yes.  If you answer no at this point, the audit hooks in the libraries
and kernel will not be installed, although pkgadd will still tell you that everything was installed
correctly -- it thinks you merely chose not to install the selected files.  Since no "error" occured
during installation, pkgadd reports a success.

--Dave

2. Modelines!?

3. C2, BSM and aset ?????

4. how to configure apache to works with php ?

5. telnet no longer works well after sol2.4 to sol2.5.1 upgrade

6. /etc/system varible info

7. Moving a disk from Sol2.3 to Sol2.4 : will it work ?

8. likely/unlikely

9. sol2.5.1 buggier than sol2.4

10. behavior of accept different in sol2.6 upwards from sol2.5

11. RFI: Any known problems with BSM on a Sparc 10 running Solaris 1.1?

12. C2 secure problem

13. Problems with C2 Security and Automount


All times are UTC
Board index