ID: 34484 Updated by: [EMAIL PROTECTED] Reported By: Sjhutman at xs4all dot nl -Status: Open +Status: Bogus Bug Type: MySQL related Operating System: HLFS PHP Version: 5.1.0RC1 New Comment:
I don't see the exploit here.. Previous Comments: ------------------------------------------------------------------------ [2005-09-14 13:30:08] Sjhutman at xs4all dot nl With every switch in the configure line I get a clean build without having TEXTREL in the library libphp5.so. But if I use the switch --with-mysql=/xxx/xxx/ in the configure line, the problem of having TEXTREL in the library libphp5.so returns. Using the --with-pie in the configure line doesn't change a thing. Using MySQL 4.1.x of 5.x also doesn't change a thing. The link you provided was very interesting and convinced even more that TEXTREL is a "bad" thing. ------------------------------------------------------------------------ [2005-09-14 00:30:03] [EMAIL PROTECTED] With this configure line I get a "clean" build: # ./configure \ --disable-all \ --with-apxs2 \ --disable-cli \ --with-pic Also read this (with which I totally agree): http://advogato.org/person/wingo/diary.html?start=115 If you really want a secure system, unplug it from internet and don't allow anyone to use it even locally. Reopen when you have an exploit ready.. ------------------------------------------------------------------------ [2005-09-13 18:22:39] Sjhutman at xs4all dot nl Adding --with-pic to the configure line didn't work. I already tried that and i've given it a second try after your comment. It didn't work. Libphp5.so still contains TEXTREL Output of readelf -d /usr/lib/apache/libphp5.so | grep TEXTREL 0x00000016 (TEXTREL) 0x0 ------------------------------------------------------------------------ [2005-09-13 15:39:58] [EMAIL PROTECTED] If I understood this correctly, it's caused by the fact that we build non-PIC by default. So adding --with-pic to your configure line should "fix" this "bug". ------------------------------------------------------------------------ [2005-09-12 22:49:41] Sjhutman at xs4all dot nl Description: ------------ Mod_php/PaX/apache2 problem: apache2 refuses to load mod_php when ELF relocations are prevented by PaX Apache fails to start when loading libphp5.so. I get the following error: cannot make segment writable for relocation: Permission denied. I've traced the error back to the switch --with-mysql=/usr/local/mysql/. If I compile php without that switch I don't get the error. The culprit of the error is TEXT RELOCATION. If I use the command: readelf -d $ /usr/lib/apache/libphp5.so | grep TEXTREL. I can see that TEXTREL is being used. Which is causing the problems. I'm using the latest version of mysql (5.0.12) Switches used to compile PHP: ./configure --prefix=/usr/local/php5 --with-apxs2=/usr/sbin/apxs --disable-cli --disable-cgi --disable-rpath --disable-short-tags --disable-ipv6 --disable-all --with-openssl --with-zlib --enable-mbstring=all --with-pcre-regex -–enable-session --without-pear --with-mysql=/usr/local/mysql/ ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=34484&edit=1
