You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Most of the tpe.extras.* options work well, but tpe.extras.hide_uname doesn't.
When I set it to "0", I get:
# sysctl -w tpe.extras.hide_uname=0
tpe.extras.hide_uname = 0
$ uname -a
Linux morfikownia 4.20.12-amd64-morficzny+ #3 SMP PREEMPT Sat Feb 23 18:43:09 CET 2019 x86_64 GNU/Linux
When I change it to "1", I get:
# sysctl -w tpe.extras.hide_uname=1
tpe.extras.hide_uname = 1
$ uname -a
Linux morfikownia 4.20.12-amd64-morficzny+ #3 SMP PREEMPT Sat Feb 23 18:43:09 CET 2019 x86_64 GNU/Linux
Also when I try to check the sysctl value using:
# sysctl -a | grep tpe.extras.hide_uname
I get the following log and the sysctl command hangs:
tpe: Denied untrusted uname of /sbin/sysctl (uid:0) by /sbin/sysctl (uid:0), parents: /bin/zsh (uid:0), /bin/su (uid:1000), /bin/zsh (uid:1000), /usr/bin/tmux (uid:1000), /lib/systemd/systemd (uid:0). Deny reason: tpe_extras
kernel: tpe: If this uname was legitimate and you cannot correct the behavior, an exception can be made to allow this by running; setfattr -n security.tpe -v "soften_uname" /sbin/sysctl. To silence this message, run; sysctl tpe.log_verbose = 0
The kernel undergoes a ton of changes every release cycle, so on newer versions, some features of this module break and need to be re-implemented. Can you provide me the link to the .iso file you used to install the system you encountered this on? I'm generally pretty behind on kernel versions on my own systems because I mainly use/maintain enterprise systems. Thanks,
Most of the
tpe.extras.*
options work well, buttpe.extras.hide_uname
doesn't.When I set it to "0", I get:
When I change it to "1", I get:
Also when I try to check the sysctl value using:
# sysctl -a | grep tpe.extras.hide_uname
I get the following log and the
sysctl
command hangs:Here are my current TPE settings:
The text was updated successfully, but these errors were encountered: