On Wed, 23 Jun 2004, Thor Lancelot Simon wrote:

> From your point of view. From my point of view, requiring execute
> permission on any file backing an executable mapping would give an
> enormous security benefit; it would, for example, allow one to ensure
> that code could never be executed from any writable file system.

Doesn't the noexec flag allow you to do this already?

cjs
-- 
Curt Sampson  <cjs@cynic.net>   +81 90 7737 2974   http://www.NetBSD.org
    Don't you know, in this new Dark Age, we're all light.  --XTC