usrmerge

https://github.com/Kicksecure/security-misc/issues/157

usr/bin/remount-secure

@@ -255,17 +255,6 @@ _var() {
    remount_secure
 }
 
-_lib() {
-   mount_folder="$NEWROOT/lib"
-   ## Cannot use noexec on /lib as per:
-   ## https://forums.whonix.org/t/re-mount-home-and-other-with-noexec-and-nosuid-among-other-useful-mount-options-for-better-security/7707/25
-   ## There are many executables in /lib. To check:
-   ## sudo find /var/lib -type f -executable
-   ## sudo find /var/lib -type f -executable ! -type l
-   intended_mount_options="nosuid,nodev"
-   remount_secure
-}
-
 _home() {
    mount_folder="$NEWROOT/home"
    intended_mount_options="nosuid,nodev${home_noexec_maybe}"

usr/share/doc/security-misc/fstab-vm

@@ -13,8 +13,6 @@ proc                                                         /proc            pr
 
 /boot                                                        /boot            none      bind,remount,nosuid,nodev,noexec 0      0
 
-/lib                                                         /lib             none      bind,remount,nosuid,nodev        0      0
-
 ## noexec optional
 /tmp                                                         /tmp             none      bind,remount,nosuid,nodev,noexec 0      0