Re: Centos 6.2 and restrictive mount-flags
I've seen several examples for separating file systems into various partitions so that one can fine tune permissions and functionality but in each example, the author recommends mounting the /var partition as "defaults,nosuid".
Query: I was wondering if there was a reason why "nodev" is not recommended on Centos/RHEL/Fedora.
/dev/VG_OS/lv_var /var ext3 defaults,nosuid,nodev 1 2
I understand that "noexec" is not recommended as under /var, one may have websites which require exec permissions for CGI scripts.
Example 1 - http://wiki.centos.org/HowTos/OS_Protection
Example 2 - http://myoss.belgoline.com/snippets/hardening-centos-5.5
Example 3 - http://people.redhat.com/sgrubb/files/hardening-rhel5.pdf