kernel compilation

Hi,

I am trying to install lids using kernel-source-2.4.20-8.i386.rpm and
lids-1.1.2rc5-2.4.20-8-lids.tar.gz but during kernel compilation (make
bzImage) I am getting error.

klids.c: In function `lids_klids_thread':
klids.c:196: structure has no member named `p_opptr'
make[2]: *** [klids.o] Error 1
make[2]: Leaving directory `/usr/src/linux-2.4.20-8/kernel'
make[1]: *** [first_rule] Error 2
make[1]: Leaving directory `/usr/src/linux-2.4.20-8/kernel'
make: *** [_dir_kernel] Error 2

Please help.

Ashish

-------------------------------------------------------
This SF.net email is sponsored by:  Etnus, makers of TotalView, The best
thread debugger on the planet. Designed with thread debugging features
you've never dreamed of, try TotalView 6 free at www.etnus.com.

Re: kernel compilation

This is a bug, 

You can edit klids.c, at line 196 delete the whole line 
which contain the "p_opptr". 

Huagang
On Wed, Jun 04, 2003 at 10:28:07PM +0530, Ashish Mishra wrote:
> Hi,
> 
> I am trying to install lids using kernel-source-2.4.20-8.i386.rpm and
> lids-1.1.2rc5-2.4.20-8-lids.tar.gz but during kernel compilation (make
> bzImage) I am getting error.
> 
> klids.c: In function `lids_klids_thread':
> klids.c:196: structure has no member named `p_opptr'
> make[2]: *** [klids.o] Error 1
> make[2]: Leaving directory `/usr/src/linux-2.4.20-8/kernel'
> make[1]: *** [first_rule] Error 2
> make[1]: Leaving directory `/usr/src/linux-2.4.20-8/kernel'
> make: *** [_dir_kernel] Error 2
> 
> Please help.
> 
> Ashish
> 
> 
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by:  Etnus, makers of TotalView, The best

LIDS 2.0.3rc1 patch for 2.5.70-lsm1

Hello,

Here is latest lids patch against 2.5.70-lsm1. From last patch for lsm, this patch got a lot of fixes and
enhancements which include process network access restriction. This patch need lastest lidstools
which can be downloaded from http://www.lids.org.

Thanks,
Huagang

--

-- 
LIDS secure linux kernel
http://www.lids.org/
1024D/B6EFB028 		4731 2BF7 7735 4DBD 3771  4E24 B53B B60A B6EF B028

unable to hide Process

Re: LIDS 2.0.3rc1 patch for 2.5.70-lsm1

* Huagang Xie (xie <at> lids.org) wrote:
> 
> Here is latest lids patch against 2.5.70-lsm1. From last patch for lsm,
> this patch got a lot of fixes and enhancements which include process
> network access restriction. This patch need lastest lidstools which can
> be downloaded from http://www.lids.org.

Applied, thanks.
-chris
--

-- 
Linux Security Modules     http://lsm.immunix.org     http://lsm.bkbits.net

-------------------------------------------------------
This SF.net email is sponsored by:  Etnus, makers of TotalView, The best
thread debugger on the planet. Designed with thread debugging features
you've never dreamed of, try TotalView 6 free at www.etnus.com.

CPU.

Hello All.

New to the list.  I've been struggling for a few days now trying to 
compile, install and configure a LIDS kernel.  I do have some experience 
compiling kernels, which may not seem like it from this question:

Tell me, if I'm using a VIA 800A MHz embedded CPU, can I still use the 
i686 version of processor for # make menuconfig?  If not, what should I 
choose?

Thanks,
Trevor.

-------------------------------------------------------
This SF.net email is sponsored by:  Etnus, makers of TotalView, The best
thread debugger on the planet. Designed with thread debugging features
you've never dreamed of, try TotalView 6 free at www.etnus.com.

Problems with LIDS patched kernel compilation

Hello, all

This is my first attempt to build a LIDS enabled kernel
as well as my first post in this mailing list :)

Today I've tried to compile LIDS (lids-1.1.2-2.4.20) with
kernel 2.4.20 (the one available from www.kernel.org). Actually
the kernel once decompressed is patched with "patch-2.4.21-rc8"
rc patch as well as with "iptables-1.2.8" and just after that
with lids-1.1.2-2.4.20
Once the kernel is configured issuing "make bzImage" soon
fails while trying to build fork.c. Here is the error:

gcc -D__KERNEL__ -I/usr/src/linux-2.4.20/include -Wall 
-Wstrict-prototypes -Wno-trigraphs -O2 -fno-strict-aliasing -fno-common 
-fomit-frame-pointer -pipe -mpreferred-stack-boundary=2 -march=i686 
-nostdinc -iwithprefix include -DKBUILD_BASENAME=fork  -c -o fork.o fork.c
fork.c: In function `copy_lids_sys_acl':
fork.c:561: storage size of `src' isn't known
fork.c:561: storage size of `dst' isn't known
fork.c:563: warning: implicit declaration of function `lids_get_task_acl'
fork.c:564: warning: implicit declaration of function 
`lids_task_acl_deep_copy'
fork.c:569: warning: implicit declaration of function `lids_set_task_acl'
fork.c:561: warning: unused variable `src'
fork.c:561: warning: unused variable `dst'
make[2]: *** [fork.o] Error 1
make[2]: Leaving directory `/usr/src/linux-2.4.20/kernel'
make[1]: *** [first_rule] Error 2
make[1]: Leaving directory `/usr/src/linux-2.4.20/kernel'
make: *** [_dir_kernel] Error 2

Actually the problem in fork.c occurs where both src and dst
structures are declared:

#ifdef CONFIG_LIDS
static inline int copy_lids_sys_acl(struct task_struct * tsk)
{
         struct lids_task_acl src,dst;
	.......
}

At least for me they are properly declared but the compiler
don't agree with that.
Any clue on this issue :) ?

Here is the configuration which I use for the LIDS part:

[*] Linux Intrusion Detection System support  (EXPERIMENTAL)
--- LIDS features
(256)   Maximum protected objects to manage
(256)   Maximum ACL subjects to manage
(256)   Maximum ACL objects to manage
[ ]   Hang up console when raising a security alert
[*]   Security alert when execing unprotected programs before sealing
[ ]     Do not execute unprotected programs before sealing LIDS
[*]   Attempt not to flood logs
(60)     Authorised time between two identic logs (seconds)
[*]   Allow switching LIDS protections
[ ]     Restrict mode switching to specified terminals
(3)     Number of attempts to submit password
(3)     Time to wait after a fail (seconds)
[ ]     Allow any program to switch LIDS protections
[*]     Allow reloading config. file
[*]   Port Scanner Detector in kernel
[*]   Send security alerts through network
[*]      Hide klids kernel thread
(10)      Number of connection tries before giving up
(60)     Sleep time after a failed connection
(64)     Message queue size
[*]      Use generic mailer pseudo-script
[ ]    LIDS Debug

Best regards,
Boryan Yotov

-------------------------------------------------------
This SF.net email is sponsored by:  Etnus, makers of TotalView, The best
thread debugger on the planet. Designed with thread debugging features
you've never dreamed of, try TotalView 6 free at www.etnus.com.

Re: Problems with LIDS patched kernel compilation

I dont know if lids 1.1.2 support linux-2.4.20-rc8 or not. So I suggest 
you use the 2.4.20 rather than 2.4.20-rc8. 

Huagang

On Wed, Jun 11, 2003 at 02:32:52PM +0200, Boryan Yotov wrote:
> Hello, all
> 
> This is my first attempt to build a LIDS enabled kernel
> as well as my first post in this mailing list :)
> 
> Today I've tried to compile LIDS (lids-1.1.2-2.4.20) with
> kernel 2.4.20 (the one available from www.kernel.org). Actually
> the kernel once decompressed is patched with "patch-2.4.21-rc8"
> rc patch as well as with "iptables-1.2.8" and just after that
> with lids-1.1.2-2.4.20
> Once the kernel is configured issuing "make bzImage" soon
> fails while trying to build fork.c. Here is the error:
> 
> gcc -D__KERNEL__ -I/usr/src/linux-2.4.20/include -Wall 
> -Wstrict-prototypes -Wno-trigraphs -O2 -fno-strict-aliasing -fno-common 
> -fomit-frame-pointer -pipe -mpreferred-stack-boundary=2 -march=i686 
> -nostdinc -iwithprefix include -DKBUILD_BASENAME=fork  -c -o fork.o fork.c
> fork.c: In function `copy_lids_sys_acl':
> fork.c:561: storage size of `src' isn't known
> fork.c:561: storage size of `dst' isn't known
> fork.c:563: warning: implicit declaration of function `lids_get_task_acl'
> fork.c:564: warning: implicit declaration of function 
> `lids_task_acl_deep_copy'
> fork.c:569: warning: implicit declaration of function `lids_set_task_acl'
> fork.c:561: warning: unused variable `src'
> fork.c:561: warning: unused variable `dst'
> make[2]: *** [fork.o] Error 1
> make[2]: Leaving directory `/usr/src/linux-2.4.20/kernel'
> make[1]: *** [first_rule] Error 2
> make[1]: Leaving directory `/usr/src/linux-2.4.20/kernel'
> make: *** [_dir_kernel] Error 2
> 
> Actually the problem in fork.c occurs where both src and dst
> structures are declared:
> 
> #ifdef CONFIG_LIDS
> static inline int copy_lids_sys_acl(struct task_struct * tsk)
> {
>         struct lids_task_acl src,dst;
> 	.......
> }
> 
> At least for me they are properly declared but the compiler
> don't agree with that.
> Any clue on this issue :) ?
> 
> Here is the configuration which I use for the LIDS part:
> 
> [*] Linux Intrusion Detection System support  (EXPERIMENTAL)
> --- LIDS features
> (256)   Maximum protected objects to manage
> (256)   Maximum ACL subjects to manage
> (256)   Maximum ACL objects to manage
> [ ]   Hang up console when raising a security alert
> [*]   Security alert when execing unprotected programs before sealing
> [ ]     Do not execute unprotected programs before sealing LIDS
> [*]   Attempt not to flood logs
> (60)     Authorised time between two identic logs (seconds)
> [*]   Allow switching LIDS protections
> [ ]     Restrict mode switching to specified terminals
> (3)     Number of attempts to submit password
> (3)     Time to wait after a fail (seconds)
> [ ]     Allow any program to switch LIDS protections
> [*]     Allow reloading config. file
> [*]   Port Scanner Detector in kernel
> [*]   Send security alerts through network
> [*]      Hide klids kernel thread
> (10)      Number of connection tries before giving up
> (60)     Sleep time after a failed connection
> (64)     Message queue size
> [*]      Use generic mailer pseudo-script
> [ ]    LIDS Debug
> 
> Best regards,
> Boryan Yotov
> 
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by:  Etnus, makers of TotalView, The best
> thread debugger on the planet. Designed with thread debugging features
> you've never dreamed of, try TotalView 6 free at www.etnus.com.
> _______________________________________________
> lids-user mailing list
> lids-user <at> lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/lids-user

--

-- 
LIDS secure linux kernel
http://www.lids.org/
1024D/B6EFB028 		4731 2BF7 7735 4DBD 3771  4E24 B53B B60A B6EF B028

-------------------------------------------------------
This SF.NET email is sponsored by: eBay
Great deals on office technology -- on eBay now! Click here:
http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5

Newbie!!! problem

[help]lidstools-0.4.2 compile error

hi all :)

I've installed a redhat7.3 box in a pc and downloaded the kernel 2.4.18 from kernel.org and patched with lids-1.1.1r2-2.4.18

then recompiled the kernel and downloaded lidstools-0.4.2.tar.gz
but when I do "configure /usr/src/linux", it comes some warnings

./configure /usr/src/linux
configure: WARNING: you should use --build, --host, --target
configure: WARNING: invalid host type: /usr/src/linux

and when I do "make" it comes some errors

lidsadm.c: In function `exit_version':
lidsadm.c:66: parse error before `VERSION'
lidsadm.c: In function `exit_normal':
lidsadm.c:72: parse error before `VERSION'
lidsadm.c: In function `exit_help':
lidsadm.c:82: parse error before `VERSION'
make[2]: *** [lidsadm.o] Error 1
make[2]: Leaving directory `/usr/src/lidstools/src'
make[1]: *** [all-recursive] Error 1
make[1]: Leaving directory `/usr/src/lidstools'
make: *** [all] Error 2

I'm a newbie here,could anybody do me a favor?

thx in advance!!!