/proc should not be mounted read-only; this would break sysctls and other important functionality. I expect it should be safe to mount it nosuid, though. Subscribing the kernel team for other input on this.
-- mountpoints with insecure permissions https://launchpad.net/bugs/54530 -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
