From 252603e5809b66522a8062f11526a13853e1def1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Thomas=20B=C3=A4chler?= <thomas@archlinux.org>
Date: Mon, 24 Aug 2009 18:57:24 +0200
Subject: Use nosuid instead of noexec on /dev

The last patch caused applications to break that mmap()ed devices with PROT_EXEC
It's sad that we can't avoid putting binaries into /dev, but at least we can avoid setuid-binaries being there
---
 rc.sysinit | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'rc.sysinit')

diff --git a/rc.sysinit b/rc.sysinit
index 8b80475..503bdc2 100755
--- a/rc.sysinit
+++ b/rc.sysinit
@@ -15,7 +15,7 @@ printhl "Distributed under the GNU General Public License (GPL)"
 printsep
 
 # mount /proc, /sys and our RAM /dev
-/bin/mount -n -t tmpfs udev /dev -o mode=0755,size=10M,noexec
+/bin/mount -n -t tmpfs udev /dev -o mode=0755,size=10M,nosuid
 /bin/mount -n -t proc none /proc
 /bin/mount -n -t sysfs none /sys
 
-- 
cgit v1.2.3