Hardening directories on single filesystem hosts

Support for security such as Firewalls and securing linux
TNTimmy
Posts: 18
Joined: 2016/06/28 18:50:30

Hardening directories on single filesystem hosts

Postby TNTimmy » 2017/08/24 18:29:59

I have inherited Centos 7 servers that were build with one single file system. I am getting them hardened but I'm not sure how to set various directories to noexec and nodev since they are not their own filesystems. I've read some articles regarding the use of the bind directive with mount. I however have not been able to get this to work. Can someone lay it out for me.

Am I better off adding a new disk (the are VMs) and partitioning the various directories with lvm on that new disk?

Thank you in advance

TNTimmy
Posts: 18
Joined: 2016/06/28 18:50:30

Re: Hardening directories on single filesystem hosts

Postby TNTimmy » 2017/08/25 21:08:17

No one can help with this?

drk
Posts: 394
Joined: 2014/01/30 20:38:28

Re: Hardening directories on single filesystem hosts

Postby drk » 2017/08/28 07:22:53

I'd be inclined to re-install.