[systemd-devel] Any reason why /run and /dev/shm do not have MS_NOEXEC flags set?

Hoyer, Marko (ADITG/SW2) mhoyer at de.adit-jv.com
Wed Feb 1 10:02:01 UTC 2017


Hello,

a tiny question:
- Is there any reason why the mount points /run and /dev/shm do not have MS_NOEXEC flags set?

We like to remove execution capabilities from all volatile areas that are writeable to users for security reasons.

Best regards

Marko Hoyer
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.freedesktop.org/archives/systemd-devel/attachments/20170201/58aca0bc/attachment.html>


More information about the systemd-devel mailing list