mounting /tmp with noexec
Ean Kingston
ean at hedron.org
Fri Apr 8 05:41:14 PDT 2005
> Hello,
>
> I wonder if it is safe to mount /tmp with noexec flag. I already discoved
> that I have to pay attention to this before installing a world, because
> this task requires to execute binaries in /tmp. Are there any further
> pitfalls which I should take into account or even could keep me from doing
> this?
I haven't seen a reply to your query so let me say that I have mounted
/tmp noexec for years and the only problems I've had were the installworld
problem you mentioned and a few badly written 3rd party installers that
expect to be able to execute from /tmp. I also mount /tmp nosuexec and
async. Sometimes after a system crash I have to rebuild /tmp because of
the async but the systems just don't crash that often.
--
Ean Kingston
E-Mail: ean_AT_hedron_DOT_org
PGP KeyID: 1024D/CBC5D6BB
URL: http://www.hedron.org/
More information about the freebsd-questions
mailing list