diff --git a/usr/lib/security-misc/remount-secure b/usr/lib/security-misc/remount-secure
index bd7c86b..dcdd02f 100755
--- a/usr/lib/security-misc/remount-secure
+++ b/usr/lib/security-misc/remount-secure
@@ -76,6 +76,15 @@ securityfs() {
    touch "/var/run/remount-secure/${FUNCNAME}"
 }
 
+lib() {
+   if [ -e "/var/run/remount-secure/${FUNCNAME}" ]; then
+      return 0
+   fi
+   ## Not using noexec on /lib.
+   mount -o nosuid,nodev --bind /lib /lib || exit_code=7
+   touch "/var/run/remount-secure/${FUNCNAME}"
+}
+
 end() {
    exit $exit_code
 }
@@ -86,6 +95,7 @@ main() {
    shm "$@"
    tmp "$@"
    securityfs "$@"
+   lib "$@"
    end "$@"
 }