Hi, On Mon, Nov 11, 2024 at 07:19:40PM +0000, Mark Hindley wrote: > Hi Debian Security Team, > > Could I have your input on this please? An old bug has been reopened asking > for > initscripts to mount debugfs by default. It was closed for several years, but > the workaround has now disappeared. > > In the original thread, concerns were raised about mounting debugfs in all > cases > both for security and unnecessary resource usage[1]. Those have been > expressed > again now.
We hat short discussion about it our weekly Kernel team meeting, and should be noted that systemd does that already. We do not see an direct problem to do it as it is restricted to root. https://meetbot.debian.net/debian-kernel/2024/debian-kernel.2024-11-13-20.00.html Regards, Salvatore