svn commit: r41839 - projects/ISBN_1-57176-407-0/en_US.ISO8859-1/books/handbook/basics
Eitan Adler
eadler at freebsd.org
Tue Jun 4 21:59:37 UTC 2013
On 4 June 2013 23:42, Tom Rhodes <trhodes at freebsd.org> wrote:
> Author: trhodes
> Date: Tue Jun 4 21:42:07 2013
> New Revision: 41839
> URL: http://svnweb.freebsd.org/changeset/doc/41839
>
> Log:
> Reword the noexec option on this version of the basics
> chapter.
>
> Modified:
> projects/ISBN_1-57176-407-0/en_US.ISO8859-1/books/handbook/basics/chapter.xml
>
> Modified: projects/ISBN_1-57176-407-0/en_US.ISO8859-1/books/handbook/basics/chapter.xml
> ==============================================================================
> --- projects/ISBN_1-57176-407-0/en_US.ISO8859-1/books/handbook/basics/chapter.xml Tue Jun 4 20:42:37 2013 (r41838)
> +++ projects/ISBN_1-57176-407-0/en_US.ISO8859-1/books/handbook/basics/chapter.xml Tue Jun 4 21:42:07 2013 (r41839)
> @@ -1800,7 +1800,9 @@ root 5211 0.0 0.2 3620 1724 2
>
> <listitem>
> <para>Do not allow execution of binaries on this file
> - system. This is also a useful security option.</para>
> + system. This option should not be the only security
> + control placed on a file system as scripts written in
> + any language may still execute.</para>
I would remove the language "the only security control" as this
implies that 'noexec' has a non-zero security value.
Perhaps "Do not allow execution of binaries on this file system. This
helps reduce annoyance to the user when storing binaries of non-native
architectures" or the like.
--
Eitan Adler
Source, Ports, Doc committer
Bugmeister, Ports Security teams
More information about the svn-doc-projects
mailing list