i have a configuration question.
I had a look into the fstab of my ipfire system and all partitions are mounted with “default” settings.
I know it’s difficult to create working rules for a / partition especially if you have /tmp, /var … all in this partition but /boot is separate.
Do someone know a reason why we should not to change the option for /boot to something like:
“rw,nodev,noexec,nosuid” to secure this a little bit more?