RLIMIT_NOFILE messages in log

Customer support forums for Atomic Protector (formerly Atomic Secured Linux). There is no such thing as a bad question here as long as it pertains to using Atomic Protector. Newbies feel free to get help getting started or asking questions that may be obvious. Regular users are asked to be gentle. :-)
Post Reply
GraFfiX
Forum User
Forum User
Posts: 52
Joined: Thu Mar 22, 2012 2:10 pm
Location: USA

RLIMIT_NOFILE messages in log

Post by GraFfiX »

About every minute I am getting a block of errors like this:

Jan 7 15:43:16 server1 kernel: grsec: denied resource overstep by requesting 1024 for RLIMIT_NOFILE against limit 1024 for /var/ossec/bin/ossec-analysisd[ossec-analysisd:17914] uid/euid:492/492 gid/egid:492/492, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0

Any ideas on how I could correct this?
Top
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:
Contact scott

Re: RLIMIT_NOFILE messages in log

Post by scott »

Sure, make sure you've got the latest updates:

aum -u

and then update your security policy:

asl -s -f
Top
GraFfiX
Forum User
Forum User
Posts: 52
Joined: Thu Mar 22, 2012 2:10 pm
Location: USA

Re: RLIMIT_NOFILE messages in log

Post by GraFfiX »

Thanks, I thought I had already updated but apparently I had not.
Top
Post Reply

Return to “Atomic Protector (formerly ASL)”