noexec on /dev/shm
Miloslav Trmač
mitr at volny.cz
Tue Dec 14 17:22:13 UTC 2010
Bill Nottingham píše v Út 14. 12. 2010 v 12:08 -0500:
> > The problem is not the technical solution. Problem is that changes of
> > such important thing like /etc/fstab are decided without Fedora developers.
>
> Eh, what? It's a change to how API filesystems (/proc, /sys, etc.) get
> mounted. When this was done in rc.sysinit, every change to how it mounted
> /proc wasn't discussed on the devel list. When we switched to having dracut
> be the primary way that API filesystems are mounted, that wasn't put up
> to a FESCo vote.
The practical difference is that nothing broke at that time, whereas
systemd tends to break thinks that users use. (I won't buy dismissing it
as "mere bugs" - adding NOEXEC could hardly have been a typo.)
Mirek
More information about the devel
mailing list