From f80b5fe3767502f6890bdfb7bc32a602c94828d6 Mon Sep 17 00:00:00 2001
From: Patrick Schleizer <adrelanos@whonix.org>
Date: Sun, 22 Oct 2023 15:36:16 -0400
Subject: [PATCH] fix

---
 usr/bin/remount-secure | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/usr/bin/remount-secure b/usr/bin/remount-secure
index 5fa177b..9f81d30 100755
--- a/usr/bin/remount-secure
+++ b/usr/bin/remount-secure
@@ -146,7 +146,7 @@ remount_secure() {
 _boot() {
    mount_folder="$NEWROOT/boot"
    ## https://lists.freedesktop.org/archives/systemd-devel/2015-February/028456.html
-   intended_mount_options="nosuid,nodev${noexec_maybe}"
+   intended_mount_options="nosuid,nodev,noexec"
    remount_secure "$@"
 }
 
@@ -199,7 +199,7 @@ _var_log() {
 
 _lib() {
    mount_folder="$NEWROOT/lib"
-   ## Not using noexec on /lib.
+   ## Cannot use noexec on /lib as per:
    ## https://forums.whonix.org/t/re-mount-home-and-other-with-noexec-and-nosuid-among-other-useful-mount-options-for-better-security/7707/25
    intended_mount_options="nosuid,nodev"
    remount_secure "$@"