[projects/geninitrd] Also mount /run as noexec,nosuid,nodev (as suggested by qboosh).

Tue Jun 7 16:52:24 CEST 2016

commit 7e3c63ed836b899d5217506e408b35284b6a00bc
Author: Arkadiusz Miśkiewicz <arekm at maven.pl>
Date:   Tue Jun 7 16:52:17 2016 +0200

    Also mount /run as noexec,nosuid,nodev (as suggested by qboosh).

 geninitrd | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
---

diff --git a/geninitrd b/geninitrd
index 62e47ee..e94ca12 100755
--- a/geninitrd
+++ b/geninitrd
@@ -273,7 +273,7 @@ mount_run() {
 	fi
 
 	run_mounted=yes
-	echo "mount -t tmpfs run /run -o mode=0755" | add_linuxrc
+	echo "mount -t tmpfs run /run -o mode=0755,noexec,nosuid,nodev" | add_linuxrc
 }
 
 # unmount all mountpoints mounted by geninitrd
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/projects/geninitrd.git/commitdiff/7e3c63ed836b899d5217506e408b35284b6a00bc

