trying out older (read-only, noexec, mount) security methods

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: trying out older (read-only, noexec, mount) security methods
From: Tim <ignored_mailbox@xxxxxxxxxxxx>
Date: Wed, 09 Nov 2005 11:19:14 +1030
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <https://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <https://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
Organization: Penguins United Against Mega-Monopolists
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

Are there any known, current, problems with mounting certain things as
read-only or noexec to minimise harm?  Such as making /tmp and /home
noexec?  Or /usr read-only?  Or any other suggestions?

Also, it occurs to me that /boot isn't read after bootup has completed.
Is it even necessary to keep it mounted?

-- 
Don't send private replies to my address, the mailbox is ignored.
I read messages from the public lists.

Follow-Ups:
- Re: trying out older (read-only, noexec, mount) security methods
  - From: James Wilkinson
- Re: trying out older (read-only, noexec, mount) security methods
  - From: Paul Howarth

Prev by Date: Cups-ppd problem
Next by Date: Re: nfs question
Previous by thread: Cups-ppd problem
Next by thread: Re: trying out older (read-only, noexec, mount) security methods
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]