From owner-svn-doc-all@FreeBSD.ORG Wed Jun 5 00:32:56 2013 Return-Path: Delivered-To: svn-doc-all@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id 8D7B1408; Wed, 5 Jun 2013 00:32:56 +0000 (UTC) (envelope-from trhodes@FreeBSD.org) Received: from homiemail-a36.g.dreamhost.com (caiajhbdccah.dreamhost.com [208.97.132.207]) by mx1.freebsd.org (Postfix) with ESMTP id 73C1818E7; Wed, 5 Jun 2013 00:32:56 +0000 (UTC) Received: from homiemail-a36.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a36.g.dreamhost.com (Postfix) with ESMTP id 07875778219; Tue, 4 Jun 2013 17:32:50 -0700 (PDT) Received: from lab (ip72-219-240-45.dc.dc.cox.net [72.219.240.45]) (Authenticated sender: trhodes@fbsdsecure.org) by homiemail-a36.g.dreamhost.com (Postfix) with ESMTPA id 1E026778473; Tue, 4 Jun 2013 14:42:54 -0700 (PDT) Date: Tue, 4 Jun 2013 17:42:53 -0400 From: Tom Rhodes To: Eitan Adler Subject: Re: svn commit: r41813 - head/en_US.ISO8859-1/books/handbook/basics Message-Id: <20130604174253.38d32aae.trhodes@FreeBSD.org> In-Reply-To: References: <201306011544.r51FijdA036793@svn.freebsd.org> <20130603075528.31629010.trhodes@FreeBSD.org> X-Mailer: Sylpheed version 1.0.6 (GTK+ 1.2.10; x86_64-unknown-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Cc: svn-doc-head@freebsd.org, trhodes@freebsd.org, svn-doc-all@freebsd.org, doc-committers@freebsd.org, utisoft@gmail.com X-BeenThere: svn-doc-all@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "SVN commit messages for the entire doc trees \(except for " user" , " projects" , and " translations" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 05 Jun 2013 00:32:56 -0000 On Mon, 3 Jun 2013 23:24:38 +0200 Eitan Adler wrote: > On 3 June 2013 16:24, Chris Rees wrote: > > > > On 3 Jun 2013 13:50, "Eitan Adler" wrote: > >> > >> On 3 June 2013 13:55, Tom Rhodes wrote: > >> > On Sat, 1 Jun 2013 15:44:45 +0000 (UTC) > >> > Eitan Adler wrote: > >> > > >> >> Author: eadler > >> >> Date: Sat Jun 1 15:44:45 2013 > >> >> New Revision: 41813 > >> >> URL: http://svnweb.freebsd.org/changeset/doc/41813 > >> >> > >> >> Log: > >> >> The man page for mount(1) and the handbook disagree on the security > >> >> value of 'noexec'. The man page is correct. > >> >> > >> >> Modified: > >> >> head/en_US.ISO8859-1/books/handbook/basics/chapter.xml > >> >> > >> >> Modified: head/en_US.ISO8859-1/books/handbook/basics/chapter.xml > >> >> > >> >> ============================================================================== > >> >> --- head/en_US.ISO8859-1/books/handbook/basics/chapter.xml Sat Jun > >> >> 1 15:37:57 2013 (r41812) > >> >> +++ head/en_US.ISO8859-1/books/handbook/basics/chapter.xml Sat Jun > >> >> 1 15:44:45 2013 (r41813) > >> >> @@ -1790,15 +1790,6 @@ root 5211 0.0 0.2 3620 1724 2 > >> >> > >> >> > >> >> > >> >> - noexec > >> >> - > >> >> - > >> >> - Do not allow execution of binaries on this file > >> >> - system. This is also a useful security option. > >> >> - > >> >> - > >> >> - > >> >> - > >> >> nosuid > >> >> > >> >> > >> > > >> > Why not fix rather than remove? > >> > >> This is not really a 'common' mount option to use. > > > > I use it on /tmp all the time; isn't it a nice thing to explain? > > It is useful to avoid mistakes as the man page says ' This option is > useful for a server that has file systems containing binaries for > architectures other than its own.' > I think explaining noatime is more important than explaining noexec. > That said, this is a bikeshed argument. Please feel free to add a > proper explanation of when noexec should be used. I will have no > objection to that. > It's ok, I'll fix your commit in the ISBN branch and we can merge it over later. -- Tom Rhodes