Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-01-13 12:29:25 -05:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #134 from monsieuremre/patch-1

Browse Source 
Fix double mount issue for /var/log and /var/tmp
This commit is contained in:
Patrick Schleizer 2023-10-24 05:22:33 -04:00 committed by GitHub
commit 5320c11f3f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 9 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
usr/bin/remount-secure
View File

@ -232,14 +232,6 @@ _tmp() {
remount_secure
}
_var() {
mount_folder="$NEWROOT/var"
## noexec: Not possible. Reason:
## Debian stores executable maintainer scripts in /var/lib/dpkg/info folder.
intended_mount_options="nosuid,nodev"
remount_secure
}
_var_tmp() {
mount_folder="$NEWROOT/var/tmp"
intended_mount_options="nosuid,nodev${most_noexec_maybe}"
@ -252,6 +244,14 @@ _var_log() {
remount_secure
}
_var() {
mount_folder="$NEWROOT/var"
## noexec: Not possible. Reason:
## Debian stores executable maintainer scripts in /var/lib/dpkg/info folder.
intended_mount_options="nosuid,nodev"
remount_secure
}
_lib() {
mount_folder="$NEWROOT/lib"
## Cannot use noexec on /lib as per:
@ -289,9 +289,9 @@ main() {
_dev
_dev_shm
_tmp
_var
_var_tmp
_var_log
_var
_home
end