ACK. However, we should coordinate with mkinitcpio.
On Thu, Jun 2, 2011 at 4:33 PM, Dave Reisner <[email protected]> wrote: > We already have /tmp and /dev/shm as world writeable directories with > exec permissions, so it doesn't necessarily make sense to inhibit exec > here. There also might be use cases where running one-off programs from > /run might make sense. > > Signed-off-by: Dave Reisner <[email protected]> > --- > rc.sysinit | 2 +- > 1 files changed, 1 insertions(+), 1 deletions(-) > > diff --git a/rc.sysinit b/rc.sysinit > index c87e3dc..070d29e 100755 > --- a/rc.sysinit > +++ b/rc.sysinit > @@ -19,7 +19,7 @@ export > PATH="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin" > # mount /proc, /sys, /run, /dev, /run/lock, /dev/pts, /dev/shm (the api > filesystems) > /bin/mountpoint -q /proc || /bin/mount -n -t proc proc /proc -o > nosuid,noexec,nodev > /bin/mountpoint -q /sys || /bin/mount -n -t sysfs sysfs /sys -o > nosuid,noexec,nodev > -/bin/mountpoint -q /run || /bin/mount -n -t tmpfs tmpfs /run -o > mode=755,size=10M,nosuid,noexec,nodev > +/bin/mountpoint -q /run || /bin/mount -n -t tmpfs tmpfs /run -o > mode=755,size=10M,nosuid,nodev > if ! /bin/mountpoint -q /dev; then > if /bin/grep -q devtmpfs /proc/filesystems &>/dev/null; then > /bin/mount -n -t devtmpfs udev /dev -o > mode=0755,size=10M,nosuid > -- > 1.7.5.2 > >
