I'm running it. Seems to work. I have one problem though. It seems like newer kernels handles IPv6 differently. Combined with the new gradm (gradm-2.1.14-6) released a few days ago, I get a lot of errors like this:
Jun 9 08:16:16 server7 kernel: grsec: From 188.8.131.52: denied kernel module auto-load of net-pf-10 by /usr/sbin/httpd[httpd:28623] uid/euid:48/48 gid/egid:48/48, parent /usr/sbin/httpd[httpd:24361] uid/euid:0/0 gid/egid:0/0
Earlier I also got the same kind of errors from DCC:
Jun 5 10:03:39 server7 kernel: grsec: denied kernel module auto-load of net-pf-10 by /usr/bin/dccproc[dccproc:13588] uid/euid:10020/10020 gid/egid:0/0, parent /usr/bin/spamd[spamd:7568] uid/euid:0/10020 gid/egid:0/103
I managed to get the ones from DCC to go away by disabling IPv6 functionality in DCC
cdcc ipv6 off
I have followed http://wiki.centos.org/FAQ/CentOS5#head-47912ebdae3b5ac10ff76053ef057c366b421dc4
to disable IPv6
I don't get any output from
lsmod | grep v6
but httpd still tries to load the net-pf-10 module resulting in a grsec error message and an ossec notification. The fastest way of triggering it is to load a wordpress site on the server.
So, over to my question. Anyone know how to definitely disable IPv6 so httpd doesn't pick it up and try to load the net-pf-10 module? Or is there a way to configure httpd not to use IPv6 at all?
PS This didn't happen before this kernel, so something must have changed in the way the kernel presents IPv6 to the system...