there is an error in the default-gentoo-policy for grsecurity for apache. On the first line it should be /usr/sbin/apache2.And also the following lines should be like this: "/usr/sbin/apache x" should be "/usr/sbin/apache2 x" "/var/log/apache2 a" should be "/var/log/apache2 a" "/var/run/apache.pid w" should be "/var/run/apache2.pid w" Reproducible: Always Steps to Reproduce: 1. 2. 3.
That policy does not support apache2 plain and simple it supports apache1. apache2's mod_php is known to have problems functioning with PAX.. So... apache2 should not be used when security matters.