Re: /home as noexec and X
On Wed, Dec 09, 1998 at 12:34:24PM -0800, Ben Gertzfield wrote:
> >>>>> "Matus" == Matus fantomas Uhlar <uhlar@fantomas.sk> writes:
>
> Matus> I just don't want any user to download any executable and
> Matus> use it. maybe i'm paranoid about security but this sounds
> Matus> like good idea to me; maybe linux kernel could be patched
> Matus> to allow executing of scripts (starting with #!) on
> Matus> partition mounted as "noexec"
>
> This would pretty much make the point of noexec invalid.. :)
Not at all. Any script could have been run by typing
<part after the #!> scriptname
anyway, even on a noexec filesystem. Noexec for binaries makes sense,
noexec for scripts is just inconvenient.
That said, I think it should be a separate mount option. noscripts or
something.
Have fun,
Avery
Reply to: