Different functions for different things. There are certainly cases where
I want to mount things that can't have setuid or devices on them (someone
brings their disk to me to attach and move stuff onto. I don't want to
worry what's on there perhaps).

On the other hand random PID's doesn't solve anything. It just hides problems
and makes them harder to discover. 

James

>
>On Fri, 10 Nov 2000 jchacon@genuity.net wrote:
>> Again, all this does is mask the problem. You still haven't solved the
>> fact the program has an exploit. Hiding that by adding layers on top of it
>> doesn't solve anything.
>
>By this definition, one could argue that other flags such as 'nodev',
>'nosuid' and 'noexec' are not needed as well when that's entirely not
>true.
>
>> James
>
>Jared
>
>
>
>