diff options
author | Thomas Bächler <thomas@archlinux.org> | 2009-08-24 18:57:24 +0200 |
---|---|---|
committer | Thomas Bächler <thomas@archlinux.org> | 2009-08-24 18:57:24 +0200 |
commit | 252603e5809b66522a8062f11526a13853e1def1 (patch) | |
tree | 3e4e30ed6eb2f1d192b6c7e312b049cb7721cb7a | |
parent | 757f653b8c9ba9d671dd95bd998bc3d487ee20d1 (diff) | |
download | initscripts-252603e5809b66522a8062f11526a13853e1def1.tar.xz |
Use nosuid instead of noexec on /dev
The last patch caused applications to break that mmap()ed devices with PROT_EXEC
It's sad that we can't avoid putting binaries into /dev, but at least we can avoid setuid-binaries being there
-rwxr-xr-x | rc.sysinit | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -15,7 +15,7 @@ printhl "Distributed under the GNU General Public License (GPL)" printsep # mount /proc, /sys and our RAM /dev -/bin/mount -n -t tmpfs udev /dev -o mode=0755,size=10M,noexec +/bin/mount -n -t tmpfs udev /dev -o mode=0755,size=10M,nosuid /bin/mount -n -t proc none /proc /bin/mount -n -t sysfs none /sys |