[projects/rc-scripts] Mount /run as mode=0755,noexec,nosuid,nodev.
arekm
arekm at pld-linux.org
Tue Jun 7 17:09:53 CEST 2016
commit bf42a4fb7c71c31954499bf9cbce4548305afe80
Author: Arkadiusz Miśkiewicz <arekm at maven.pl>
Date: Tue Jun 7 17:09:48 2016 +0200
Mount /run as mode=0755,noexec,nosuid,nodev.
rc.d/rc.sysinit | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
---
diff --git a/rc.d/rc.sysinit b/rc.d/rc.sysinit
index f7f0eea..99bb078 100755
--- a/rc.d/rc.sysinit
+++ b/rc.d/rc.sysinit
@@ -409,7 +409,7 @@ if ! is_yes "$VSERVER" && [[ "$container" != lxc* ]]; then
parse_cmdline
if [ -d /run ]; then
- is_fsmounted tmpfs /run || mount -n -t tmpfs run /run
+ is_fsmounted tmpfs /run || mount -n -t tmpfs run /run -o mode=0755,noexec,nosuid,nodev
fi
# Early sysctls
@@ -680,7 +680,7 @@ if ! is_yes "$VSERVER" && [[ "$container" != lxc* ]]; then
mount -f -t devtmpfs devtmpfs /dev 2> /dev/null
fi
if is_fsmounted tmpfs /run; then
- mount -f -t tmpfs run /run 2> /dev/null
+ mount -f -t tmpfs run /run -o mode=0755,noexec,nosuid,nodev 2> /dev/null
fi
if is_fsmounted usbfs /proc/bus/usb; then
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/projects/rc-scripts.git/commitdiff/bf42a4fb7c71c31954499bf9cbce4548305afe80
More information about the pld-cvs-commit
mailing list