From 1e8457ea476a693dd1e455e4c455bf2e763cec23 Mon Sep 17 00:00:00 2001
From: Patrick Schleizer <adrelanos@riseup.net>
Date: Sat, 21 Dec 2019 14:06:10 -0500
Subject: [PATCH] no longer remount /lib

https://forums.whonix.org/t/re-mount-home-and-other-with-noexec-and-nosuid-among-other-useful-mount-options-for-better-security/7707/25
---
 usr/lib/security-misc/remount-secure | 13 +++++++------
 1 file changed, 7 insertions(+), 6 deletions(-)

diff --git a/usr/lib/security-misc/remount-secure b/usr/lib/security-misc/remount-secure
index e43406f..ae263b8 100755
--- a/usr/lib/security-misc/remount-secure
+++ b/usr/lib/security-misc/remount-secure
@@ -106,11 +106,12 @@ _tmp() {
    remount_secure "$@"
 }
 
-_lib() {
-   ## Not using noexec on /lib.
-   new_mount_options="nosuid,nodev"
-   remount_secure "$@"
-}
+## https://forums.whonix.org/t/re-mount-home-and-other-with-noexec-and-nosuid-among-other-useful-mount-options-for-better-security/7707/25
+# _lib() {
+#    ## Not using noexec on /lib.
+#    new_mount_options="nosuid,nodev"
+#    remount_secure "$@"
+# }
 
 end() {
    exit $exit_code
@@ -121,7 +122,7 @@ main() {
    _run "$@"
    _dev_shm "$@"
    _tmp "$@"
-   _lib "$@"
+   #_lib "$@"
    end "$@"
 }