On Thu, Dec 03, 2009 at 09:55:38PM +0200, Eugene Yunak wrote:
> 2009/12/3 Mark Romer <[email protected]>:
> > Hello All,
> > Sorry if it has been asked in the past, but is it ok to mount the /usr
> > partition as nosuid?
> > What if any default programs will that break? B And also does that give me
> > any added security benefits?
> > Running 4.6 release generic i386
> > thanks, Mark
>
> "find /usr -perm 4555 -ls" will solve the question re wether it will
> break something.
to the OP: perhaps what you are thining of is thrid party apps
(packages) in /usr/local. in the new install script the disk
auto-layout feature creates a separate /usr/local partition;
do this and mount it nosuid... THEN run
"find /usr/local -perm 4555 -ls" to see what apps you are
breaking 8*)
cel
--
Christopher Linn <celinn at mtu.edu> | By no means shall either the CEC
System Administrator II | or MTU be held in any way liable
Center for Experimental Computation | for any opinions or conjecture I
Michigan Technological University | hold to or imply to hold herein.
