�noexec� and �nosuid� Post: 302555047

3 More Discussions You Might Find Interesting

1. Solaris

nosuid on Solaris 8

Hi, Can anyone help on the following "Mount file system as �nosuid� to prevent accidental and unauthorised execution of software especially Setuid utility" Question 1) Does this refer only to local mount or remote mount or both 2) What exactly nosuid mean . 3) How does it impact ,...

2. Shell Programming and Scripting

Debugging a script with noexec

Newbie question. I cannot get "set -n" or "set -noexec on" to work on Linux or AIX! According to the man page and what I read online, it should inform me of syntax errors without executing commands in your script. So, can someone PLEASE explain why this does not work? ...

3. UNIX for Advanced & Expert Users

Noexec on /home

Hi all, I read in some documents that it is advised to use the mount option noexec also on /home. I can live with a nosuid but since I am writing scripts in /home and also execute them for testing etc., it is very annoying if I would be forced to copy the scripts all the time to /tmp for...

LEARN ABOUT MINIX

lofs

lofs(7FS)							   File Systems 							 lofs(7FS)

NAME

       lofs - loopback virtual file system

SYNOPSIS

       #include <sys/param.h>
       #include <sys/mount.h>

       int mount (const char* dir, const char* virtual, int mflag, lofs, NULL, 0);

DESCRIPTION

       The  loopback  file  system  device  allows new, virtual file systems to be created, which provide access to existing files using alternate
       pathnames. Once the virtual file system is created, other file systems can be mounted within it, without affecting the original	file  sys-
       tem.  However,  file systems which are subsequently mounted onto the original file system are visible to the virtual file system, unless or
       until the corresponding mount point in the virtual file system is covered by a file system mounted there.

       virtual is the mount point for the virtual file system. dir is the pathname of the existing file system. mflag specifies the mount options;
       the   MS_DATA  bit  in  mflag must be set. If the MS_RDONLY bit in  mflag is not set, accesses to the loop back file system are the same as
       for the underlying file system.	Otherwise, all accesses in the loopback file system will be read-only.	All  other  mount(2)  options  are
       inherited from the underlying file systems.

       A  loopback  mount  of '/' onto /tmp/newroot allows the entire file system hierarchy to appear as if it were duplicated under /tmp/newroot,
       including any file systems mounted from remote NFS servers. All files would then be accessible either from a pathname relative  to  '/'	or
       from a pathname relative to /tmp/newroot until such time as a file system is mounted in /tmp/newroot, or any of its subdirectories.

       Loopback  mounts  of  '/'  can  be  performed in conjunction with the chroot(2) system call, to provide a complete virtual file system to a
       process or family of processes.

       Recursive traversal of loopback mount points is not allowed. After the loopback mount of /tmp/newroot,  the  file  /tmp/newroot/tmp/newroot
       does  not  contain  yet	another file system hierarchy; rather, it appears just as /tmp/newroot did before the loopback mount was performed
       (for example, as an empty directory).

   Examples
       lofs file systems are mounted using:

       mount -F lofs /tmp /mnt

SEE ALSO

       lofiadm(1M), mount(1M), chroot(2), mount(2), sysfs(2), vfstab(4), lofi(7D)

WARNINGS

       Loopback mounts must be used with care; the potential for confusing  users  and	applications  is  enormous.  A	loopback  mount  entry	in
       /etc/vfstab must be placed after the mount points of both directories it depends on.  This is most easily accomplished by  making the loop-
       back mount entry the last in  /etc/vfstab.

SunOS 5.10							    10 Apr 2001 							 lofs(7FS)