RGBCube/serenity
1
Fork 0
mirror of https://github.com/RGBCube/serenity synced 2025-07-27 04:17:35 +00:00
Code Issues Activity Actions

Kernel+Base: Mount root filesystem read-only :^)

Browse source 
We remount /home and /root as read-write, to keep the ability to modify files
there. /tmp remains read-write, as it is mounted from a TmpFS.
This commit is contained in:
Sergey Bugaev 2020-05-28 18:06:13 +03:00 committed by Andreas Kling
parent 39cde80545
commit 53647e347f
2 changed files with 10 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

12
Base/etc/fstab
View file

@ -1,10 +1,12 @@
# Root file system. This is a fake entry which gets ignored by `mount -a`;
# the actual logic for mounting root is in the kernel.
/dev/hda / ext2 nodev,nosuid
# Remount /bin and /dev while adding the appropriate permissions.
/dev /dev bind bind,nosuid
/bin /bin bind bind,nodev
/dev/hda / ext2 nodev,nosuid,ro
# Remount /bin, /dev, /root, and /home while adding the appropriate permissions.
/dev /dev bind bind,nosuid,ro
/bin /bin bind bind,nodev,ro
/home /home bind bind,nodev,nosuid
/root /root bind bind,nodev,nosuid
none /proc proc nosuid
none /dev/pts devpts noexec,nosuid
none /dev/pts devpts noexec,nosuid,ro
none /tmp tmp nodev,nosuid