Tighten up installed options on /tmp by adding nosuid,nodev.

Suggested by Ian McWilliam. ok deraadt@.
author: krw <krw@openbsd.org> 2002-04-30 04:14:18 +0000
committer: krw <krw@openbsd.org> 2002-04-30 04:14:18 +0000
commit: 6cd7bfee83ec42ae2bd98faa289b606977219b26 (patch)
tree: 7192463c7b67dd3ec1d509b19216002c045573d6
parent: tset bye bye (diff)
download: wireguard-openbsd-6cd7bfee83ec42ae2bd98faa289b606977219b26.tar.xz
wireguard-openbsd-6cd7bfee83ec42ae2bd98faa289b606977219b26.zip
1 files changed, 6 insertions, 6 deletions
diff --git a/distrib/miniroot/install.sh b/distrib/miniroot/install.sh
index b470ca8cae4..761dee94778 100644
--- a/distrib/miniroot/install.sh
+++ b/distrib/miniroot/install.sh
@@ -1,5 +1,5 @@
 #!/bin/sh
-#	$OpenBSD: install.sh,v 1.99 2002/04/28 20:41:15 krw Exp $
+#	$OpenBSD: install.sh,v 1.100 2002/04/30 04:14:18 krw Exp $
 #	$NetBSD: install.sh,v 1.5.2.8 1996/08/27 18:15:05 gwr Exp $
 #
 # Copyright (c) 1997-2002 Todd Miller, Theo de Raadt, Ken Westerback
@@ -267,11 +267,11 @@ if [ ! -f /etc/fstab ]; then
 	# fstab.
 	(
 		while read _dev _mp; do
-			if [ "$_mp" = "/" ]; then
-				echo /dev/$_dev $_mp ffs rw 1 1
-			else
-				echo /dev/$_dev $_mp ffs rw 1 2
-			fi
+			case $_mp in
+			"/")	echo /dev/$_dev $_mp ffs rw 1 1;;
+			"/tmp")	echo /dev/$_dev $_mp ffs rw,nosuid,nodev 1 2;;
+			*)	echo /dev/$_dev $_mp ffs rw 1 2;;
+			esac
 		done
 	) < ${FILESYSTEMS} > /tmp/fstab
author	krw <krw@openbsd.org>	2002-04-30 04:14:18 +0000
committer	krw <krw@openbsd.org>	2002-04-30 04:14:18 +0000
commit	6cd7bfee83ec42ae2bd98faa289b606977219b26 (patch)
tree	7192463c7b67dd3ec1d509b19216002c045573d6
parent	tset bye bye (diff)
download	wireguard-openbsd-6cd7bfee83ec42ae2bd98faa289b606977219b26.tar.xz wireguard-openbsd-6cd7bfee83ec42ae2bd98faa289b606977219b26.zip