RFC: Remove write permissions from executables
Steve Grubb
sgrubb at redhat.com
Fri Jan 22 19:51:41 UTC 2010
On Friday 22 January 2010 01:30:11 pm Richard Zidlicky wrote:
> > We would want to change the owner write permission bit for all
> > executables. In F-12 we took care of the major directories, this is
> > phase 2 of the same project where we take a bigger step. Phase 1 was
> > proving that the missing write permission on directories won't mess up
> > system updates. Phase 2 would do the same to files.
>
> so one of the next steps might also be to allow some filesystems to be
> read-only? Can be done manually of course but most of the time I am too
> lazy to do that.
That makes "yum update" and friends messy.
-Steve
More information about the devel
mailing list