On Tue, Sep 02, 2003 at 11:49:43PM -0500, Gunnar Wolf wrote: > /usr should be mountable read-only... I would go for /var/opt or -if it > is a disposable script- /tmp or /var/tmp (of course, excercising enough > care)
On my system I try to have /var mounted noexec, and /usr readonly. Both breaks of course dpkg runs. But in normal, non system maintenance mode, this works fine. I would like to preserve that, especially /tmp and /var/tmp i would not like to see executable. Greetings Bernd -- (OO) -- [EMAIL PROTECTED] -- ( .. ) [EMAIL PROTECTED],linux.de,debian.org} http://home.pages.de/~eckes/ o--o *plush* 2048/93600EFD [EMAIL PROTECTED] +497257930613 BE5-RIPE (O____O) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!