Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-02-25 20:21:12 -05:00
Code Issues Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
Patrick Schleizer 2023-10-22 15:36:16 -04:00
parent ce0babce21
commit f80b5fe376
No known key found for this signature in database
GPG Key ID: CB8D50BB77BB3C48
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
usr/bin/remount-secure
View File

@ -146,7 +146,7 @@ remount_secure() {
_boot() { _boot() {
mount_folder="$NEWROOT/boot" mount_folder="$NEWROOT/boot"
## https://lists.freedesktop.org/archives/systemd-devel/2015-February/028456.html ## https://lists.freedesktop.org/archives/systemd-devel/2015-February/028456.html
intended_mount_options="nosuid,nodev${noexec_maybe}" intended_mount_options="nosuid,nodev,noexec"
remount_secure "$@" remount_secure "$@"
} }
@ -199,7 +199,7 @@ _var_log() {
_lib() { _lib() {
mount_folder="$NEWROOT/lib" mount_folder="$NEWROOT/lib"
## Not using noexec on /lib. ## Cannot use noexec on /lib as per:
## https://forums.whonix.org/t/re-mount-home-and-other-with-noexec-and-nosuid-among-other-useful-mount-options-for-better-security/7707/25 ## https://forums.whonix.org/t/re-mount-home-and-other-with-noexec-and-nosuid-among-other-useful-mount-options-for-better-security/7707/25
intended_mount_options="nosuid,nodev" intended_mount_options="nosuid,nodev"
remount_secure "$@" remount_secure "$@"