I've set up a gentoo hardened web server with hardened sources, grsec and pax enabled. I was in a rush to deploy so I didn't have time to learn much about grsec.

in the logs I've got:

<date> [kernel] grsec: From <ip address>: denied resource overstep by requesting 7462912 for RLIMIT_MEMLOCK against limit 32768 for /usr/sbin/ntpd[ntpd:31926] uid/euid:123/123 gid/egid:123/123, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0

Can anybody help me out with this problem. I'd like to increase the resource limit for this program to allow it the 7Mb it's asking for, but I don't know how to do this.

Also, could anybody point me in the direction of a good grsecurity manual (not too long, not too simple), maybe a gentoo one? (gentoo docs are great!)