Separate File System

M

mTuran

Verified User
Joined
Dec 30, 2009
Messages
6
Hi, i see this security warning from CSF:

Check /tmp is mounted as a filesystem WARNING /tmp should be mounted as a separate filesystem with the noexec,nosuid options set

How can i fix that ? Thanks.

My fstab file:
Code: 
/dev/VolGroup00/LogVol00                        /                       ext3    defaults,usrquota,grpquota      1 1
LABEL=/boot             /boot                   ext3    defaults        1 2
tmpfs                   /dev/shm                tmpfs   defaults        defaults,nosuid,noexec,rw 0 0
devpts                  /dev/pts                devpts  gid=5,mode=620  0 0
sysfs                   /sys                    sysfs   defaults        0 0
proc                    /proc                   proc    defaults        0 0
/dev/VolGroup00/LogVol01 swap                    swap    defaults        0 0
./var/tmpMnt /tmp ext3 loop,rw,noexec,nosuid,nodev 0 0.
 
Disable the warning in csf or add another drive that you can mount to /tmp
 
You should not need a separate physical hard drive. However, looking at your fstab table, it appears that you're already mounting a file as /tmp. Presuming you are, you might want to discuss this on a forum specializing in CSF.

Jeff
 
Got an error:


Code: 
[root@server var]# mount -o loop,noexec,nosuid,rw /var/tmpMnt /tmp
mount: Could not find any loop device. Maybe this kernel does not know
       about the loop device? (If so, recompile or `modprobe loop'.)

How to fix?
 
mount: Could not find any loop device. Maybe this kernel does not know
about the loop device? (If so, recompile or `modprobe loop'.)
 
zEitEr said:
mount: Could not find any loop device. Maybe this kernel does not know
about the loop device? (If so, recompile or `modprobe loop'.)
Click to expand...

I got this:


Code: 
[root@server var]# mount  -o  loop,noexec,nosuid,rw  /dev/tmpFS  /tmp
mount: Could not find any loop device. Maybe this kernel does not know
       about the loop device? (If so, recompile or `modprobe loop'.)
[root@server var]# modprobe loop
FATAL: Could not load /lib/modules/2.6.32-042stab049.6/modules.dep: No such file or directory
 
You can not load modules and recompile kernel either in OpenVZ/Virtuozzo container. You should ask your VPS provider (hosting company) to load it for you. But you can still use tmpfs for the purpose of mounting /tmp as a separate file system.
 
You must log in or register to reply here.
Back
Top