[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

vmware gsx server + gre-security

Witam.

Mam problem z skonfigurowaniem gre-security pod vmware gsx server. Dopisalem
do acl
/usr/bin/vmware {
        /dev/mem rw
        /dev/vmmon rw
        /dev/log rw
        /root/.vmware rw
        /usr/bin/vmware rw
        /dev/[k]mem rw
        +CAP_SYS_TTY_CONFIG
        +CAP_SYS_RAWIO
}

/usr/sbin/vmware-authd {
        /dev/log rw
}

/usr/sbin/vmware-serverd {
        /var/log/vmware rw
}

/usr/lib/vmware/bin/vmware-mks {
        /dev/log rw
        /dev/vmmon rw
        +CAP_SYS_RAWIO

W kern.log nie widze juz bledow, ale nadal nie moge uruchomic wirtualnej
maszyny:

VMware GSX Server is unable to reserve the requested 16MB of memory for the
virtual machine.
Try reducing the amount of memory assigned to the virtual machine to -20MB
or less.

W systemie jest 128MB pamieci.

kern.log:
Aug  9 05:32:53 prison kernel: grsec: From 192.168.1.2: signal 11 sent to
(vmware-mks:28079) UID(0) EUID(0), parent (vmware:14448) UID(0) EUID(0)
Aug  9 05:32:53 prison kernel: grsec: From 192.168.1.2: signal 11 sent to
(vmware:14448) UID(0) EUID(0), parent (vmware-authd:3503) UID(0) EUID(0)
Aug  9 05:32:55 prison kernel: grsec: From 192.168.1.2: attempted mmap write
of /dev/[k]mem by (vmware:14448) UID(0) EUID(0), parent (init:1) UID(0)
EUID(0)
Aug  9 05:32:56 prison kernel: /dev/vmmon: Vmx86_ReleaseVM: unlocked pages:
0, unlocked dirty pages: 0

Instlowal ktos moze vmware i wie gdzie moze byc problem ?


Pozdrawiam
neon
Reply to: