Get these quite often - its a development server in a non production non public environment and so no one is actually using it for hosting content, and so its taking no traffic but these errors occurr quite often.
Jul 19 08:02:23 hostname kernel: jsvc[20755]: segfault at 76c50ae95da0 ip 000076c50ac7f9ec sp 00007fffc96364e0 error 7 in ld-2.5.so[76c50ac79000+1c000]
Jul 19 08:02:23 hostname kernel: grsec: Segmentation fault occurred at 000076c50ae95da0 in /usr/local/jakarta/apache-tomcat-5.5.33/bin/jsvc[jsvc:20755] uid/euid:102/102 gid/egid:99/99, parent /usr/local/jakarta/apache-tomcat-5.5.33/bin/jsvc[jsvc:3248] uid/euid:0/0 gid/egid:0/0
cpanel - tomcat Seg Faults
- mikeshinn
- Atomicorp Staff - Site Admin
- Posts: 4149
- Joined: Thu Feb 07, 2008 7:49 pm
- Location: Chantilly, VA
Re: cpanel - tomcat Seg Faults
Does it run and serve content? Or does it just die right away?
Michael Shinn
Atomicorp - Security For Everyone
Atomicorp - Security For Everyone
-
- Forum Regular
- Posts: 661
- Joined: Mon Oct 29, 2007 6:51 pm
Re: cpanel - tomcat Seg Faults
Since no one uses it, no domains are on it, and there is no content to serve I am assuming that its trying to start and dying right away but since Im making an assumption that may not be the case.
- mikeshinn
- Atomicorp Staff - Site Admin
- Posts: 4149
- Joined: Thu Feb 07, 2008 7:49 pm
- Location: Chantilly, VA
Re: cpanel - tomcat Seg Faults
If its dying right away, its possible you just need to configure java to be allowed to smash your stack. Have you tried configuring it to do this, per the FAQ below:
https://www.atomicorp.com/wiki/index.ph ... ped_by_PAX
It may also be loading a library thats trying to configure your stack to be smashable, I've seen some poorly packaged openssl libraries setup this way (*shudder!* openssl smashing your stack?! Instant root!). If setting java to smash the stack doesnt resolve the issue, and you cant find a library trying to do this it might be a real segfault, in which case I recommend this process:
https://www.atomicorp.com/wiki/index.php/Apache
Although thats for apache segfault debugging, the principle still applies.
https://www.atomicorp.com/wiki/index.ph ... ped_by_PAX
It may also be loading a library thats trying to configure your stack to be smashable, I've seen some poorly packaged openssl libraries setup this way (*shudder!* openssl smashing your stack?! Instant root!). If setting java to smash the stack doesnt resolve the issue, and you cant find a library trying to do this it might be a real segfault, in which case I recommend this process:
https://www.atomicorp.com/wiki/index.php/Apache
Although thats for apache segfault debugging, the principle still applies.
Michael Shinn
Atomicorp - Security For Everyone
Atomicorp - Security For Everyone
-
- Forum Regular
- Posts: 661
- Joined: Mon Oct 29, 2007 6:51 pm
Re: cpanel - tomcat Seg Faults
I did
/sbin/chpax -ps /usr/local/jakarta/apache-tomcat-5.5.33/bin/jsvc
but that didnt seem to change anything.
psmon isnt installed since its a cpanel system and there are all the perl dependancies so Im not sure why it would be doing it on a fairly regular basis
/sbin/chpax -ps /usr/local/jakarta/apache-tomcat-5.5.33/bin/jsvc
but that didnt seem to change anything.
psmon isnt installed since its a cpanel system and there are all the perl dependancies so Im not sure why it would be doing it on a fairly regular basis
- mikeshinn
- Atomicorp Staff - Site Admin
- Posts: 4149
- Joined: Thu Feb 07, 2008 7:49 pm
- Location: Chantilly, VA
Re: cpanel - tomcat Seg Faults
You need a few more switches for java generally, try -emrspx.
Michael Shinn
Atomicorp - Security For Everyone
Atomicorp - Security For Everyone