Re: Mounting /dev/shm noexec

To: debian-user@lists.debian.org
Cc: andy@strugglers.net, valter.jaakkola@elisanet.fi
Subject: Re: Mounting /dev/shm noexec
From: Steve McIntyre <steve@einval.com>
Date: Sat, 03 Oct 2020 00:06:33 +0000
Message-id: <[🔎] E1kOV4L-00074T-KV@mail.einval.com>
In-reply-to: <[🔎] 20201002204626.GP23197@bitfolk.com>
References: <[🔎] 2543cc569115136a021c132be3ed0cc73eb3cc66.camel@elisanet.fi> <[🔎] 2543cc569115136a021c132be3ed0cc73eb3cc66.camel@elisanet.fi>

Andy Smith wrote:

...

>Though note that it seems systemd once did use "noexec" for /dev/shm
>but stopped 10 years ago because it broke some uses of mmap:
>
>    https://github.com/systemd/systemd/commit/501c875bffaef3263ad42c32485c7fde41027175

libffi also has a habit of using /dev/shm for writing temporary
trampolines for cross-language calls, and they need to be executable.

-- 
Steve McIntyre, Cambridge, UK.                                steve@einval.com
"You can't barbecue lettuce!" -- Ellie Crane

Reply to:

Follow-Ups:
- Re: Mounting /dev/shm noexec
  - From: Valter Jaakkola <valter.jaakkola@elisanet.fi>
- Re: Re: Mounting /dev/shm noexec
  - From: Michael Biebl <biebl@debian.org>

References:
- Mounting /dev/shm noexec
  - From: Valter Jaakkola <valter.jaakkola@elisanet.fi>
- Re: Mounting /dev/shm noexec
  - From: Andy Smith <andy@strugglers.net>

Prev by Date: Re: General-Purpose Server for Debian Stable
Next by Date: Re: General-Purpose Server for Debian Stable
Previous by thread: Re: Mounting /dev/shm noexec
Next by thread: Re: Mounting /dev/shm noexec
Index(es):
- Date
- Thread