RFC: Remove write permissions from executables
Richard Zidlicky
rz at linux-m68k.org
Fri Jan 22 18:30:11 UTC 2010
On Fri, Jan 22, 2010 at 01:15:02PM -0500, Steve Grubb wrote:
> On Friday 22 January 2010 10:25:47 am David Malcolm wrote:
> > i.e. it seems to me like it's worth going through the Feature process
> > (either as a Feature or an Enhancement), if only to capture the standard
> > concerns there and create a URL describing the change; see:
> > https://fedoraproject.org/wiki/Features
> >
> > Bear in mind that the deadline for requesting F13 features is in 4 days
> > time (if memory serves)
> >
> > How many files would be affected by the change?
>
> We would want to change the owner write permission bit for all executables. In
> F-12 we took care of the major directories, this is phase 2 of the same
> project where we take a bigger step. Phase 1 was proving that the missing
> write permission on directories won't mess up system updates. Phase 2 would do
> the same to files.
so one of the next steps might also be to allow some filesystems to be read-only?
Can be done manually of course but most of the time I am too lazy to do that.
Richard
More information about the devel
mailing list