On Tue, 29 Mar 2005 14:58:28 -0600, Aleksandar Milivojevic <amilivojevic@xxxxxx> wrote: > > You can also mount /boot, /var, /tmp, /var/tmp, and /home as nosuid and > noexec, as needed. They shouldn't contain executables anyhow. > Especially no setuid executables. You're aware of this, I assume: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=126259 By default, logrotate needs to exec scripts in /tmp so setting it noexec requires you to also change the place logrotate is using to place it's script. Greg
[Centos] email server partition scheme
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: [Centos] email server partition scheme
- From: greg.knaddison at gmail.com (Greg Knaddison)
- Date: Tue Mar 29 21:33:44 2005
- In-reply-to: <4249C174.6000704@xxxxxx>
- References: <4249B988.5030804@xxxxxxxxxxxxxx> <4249C174.6000704@xxxxxx>
- References:
- [Centos] email server partition scheme
- From: Daniel Wright
- [Centos] email server partition scheme
- From: Aleksandar Milivojevic
- [Centos] email server partition scheme
- Prev by Date: Spam: Re: [Centos] email server partition scheme
- Next by Date: Spam: Re: [Centos] email server partition scheme
- Previous by thread: [Centos] email server partition scheme
- Next by thread: [Centos] email server partition scheme
- Index(es):
 |