mirror of
https://github.com/Kicksecure/security-misc.git
synced 2024-12-26 18:39:25 -05:00
comment
This commit is contained in:
parent
fb4254547b
commit
36043fe5cc
@ -50,6 +50,9 @@ add_nosuid_statoverride_entry() {
|
||||
new_mode="$existing_mode"
|
||||
fi
|
||||
|
||||
## Remove 'others' / 'group' execution ('chmod og-x /path/to/binary') rights for better usability?
|
||||
## Make binaries such as 'su' fail closed rather than fail open if suid was removed from these?
|
||||
## Are there suid or guid binaries which are still useful if suid / guid has been removed from these?
|
||||
## https://forums.whonix.org/t/permission-hardening/8655/10
|
||||
# if [ "$new_mode" = "755" ]; then
|
||||
# new_mode=744
|
||||
|
Loading…
Reference in New Issue
Block a user