Date: Mon, 23 Jun 2003 19:03:48 +0200 From: Socketd <db@traceroute.dk> To: Robert Watson <rwatson@freebsd.org>, hackers@freebsd.org Subject: Re: Mounting Message-ID: <20030623190348.34057f53.db@traceroute.dk> In-Reply-To: <Pine.NEB.3.96L.1030623114101.52424E-100000@fledge.watson.org> References: <20030623155627.5d0a0ad3.db@traceroute.dk> <Pine.NEB.3.96L.1030623114101.52424E-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 23 Jun 2003 11:45:37 -0400 (EDT) Robert Watson <rwatson@freebsd.org> wrote: > > /var/mail noexec > > nosuid would be fine here also. And noexec too I guess? > nodev prevents opening specfs character devices, but doesn't prevent > opening fifos or UNIX domain sockets, so is generally fine for all > file systems except /dev. The common exceptions I bump into are: > > (1) If you have per-user chroots, make sure wherever their custom /dev > is > isn't nodev. > > (2) The linux port used to (may still) install with a null device > under > /usr in the compat tree. Mounting this with nodev will break > opening/dev/null for Linux apps. I'm not sure why the null entry > exists there, and in fact we know it needs to go away since it > will break when we GC major device numbers. Ah ok, again thank you for your help :-D br socketd
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030623190348.34057f53.db>