23 May
2007
23 May
'07
5:43 p.m.
Agreed, i would though add a /tmp of 10G or so, mounted as noexec and nosuid for web servers (running maybe insecure php apps or similar).
Dhawal,
Are you saying that in /etc/fstab that the entry should be changed from
LABEL=/tmp /tmp ext3 defaults 1 2
To
LABEL=/tmp /tmp ext3 noop,noexec,nosuid,rw 1 2
Or do you do something slightly different?
Any drawbacks you have noticed on an internet facing web and mail server?
- rh
-- Abba Communications Spokane, WA www.abbacomm.net