Mark Stosberg on Nostr: Dear #Linux: Do you use the "noexec" mount option on data volumes? Any downsides? The ...
Dear #Linux: Do you use the "noexec" mount option on data volumes? Any downsides?
The option "does not permit direct execution of binaries". It still allows passing a file, say a JavaScript file, to /usr/bin/node, on an other partitions that allows executables.
The idea would to reduce attack surface area if you don't plan to store executables there.
#security #cybersecurty
The option "does not permit direct execution of binaries". It still allows passing a file, say a JavaScript file, to /usr/bin/node, on an other partitions that allows executables.
The idea would to reduce attack surface area if you don't plan to store executables there.
#security #cybersecurty