Make /run nosuid,noexec

This was not sufficiently locked down. Fix #720 Signed-off-by: Justin Cormack <justin.cormack@docker.com>
2025-07-24 19:28:09 +00:00 · 2016-11-23 12:08:53 +00:00 · 2016-11-23 12:08:53 +00:00 · 80c9cee485
commit 80c9cee485
parent f2b8beb0ee
1 changed files with 1 additions and 1 deletions
--- a/alpine/etc/fstab
+++ b/alpine/etc/fstab
@ -1 +1 @@
-tmpfs	/run	tmpfs	defaults,nodev,relatime,size=10%,mode=755 0 0
+tmpfs	/run	tmpfs	defaults,nodev,nosuid,noexec,relatime,size=10%,mode=755 0 0