2017-06-13 7:29 GMT+02:00 Josh Stephens <[email protected]>: > >> So my question is, will there be any security implications that I > >> should be concerned about with setting wxallowed in /etc/fstab to the > >> home mountpoint? > > > > Yes there is a security implication. From mount(8), > > Turn it off and accept the consequences, and potential risks if you > > like. W|X memory isn't the only risk out there... > > Thank you Theo. After reading through your reply I would rather not > deal with a potential risk. I decided to go down the path of adding a > venv directory in /usr/local and giving my account as owner and wheel > as group. This should allow the python binaries to stay in /usr/local >
Now that you have a /usr/local/venv dir, why not add a small partition and mount it over the venv/ dir and have wxallowed on it? Smallest possible WX surface. -- May the most significant bit of your life be positive.
