Description of problem: Maybe /proc should be mounted by default with noexec,nosuid flags? This can increase security in some way. Steps to Reproduce: 1. grep proc /etc/fstab Additional info: http://thread.gmane.org/gmane.linux.gentoo.devel/40511/focus=40511 http://lwn.net/Articles/191531/
The initramfs mounts proc. Of course, if this is that important, why not just set it that way *in the kernel*?
The linux-2.6-defaults-* patches are really starting to pile up. If you feel strongly about this issue, argue it upstream in http://bugzilla.kernel.org or linux-kernel.org