Hello KDE Community! I found out two applications spectacle and qtcreator have for some time begun to require exec flag in ~/.cache without which it crashing, since it is assumed that the execution of files should be allowed from this directory. Is it correct? Is it secure? How do you think? I'm in my fstab, for perfomance and security reasons, specify this: tmpfs /tmp tmpfs nodev,nosuid,size=2G 0 0 tmpfs /var/tmp tmpfs nodev,nosuid,size=2G 0 0 tmpfs /var/cache/zypp tmpfs nodev,nosuid,noexec,mode=0755,size=2G 0 0 tmpfs /run tmpfs nodev,nosuid,noexec,mode=0755,size=32m 0 0 tmpfs /run/lock tmpfs nodev,nosuid,noexec,mode=0755,size=8m 0 0 tmpfs /root/.cache tmpfs nodev,nosuid,noexec,mode=0700,size=2G 0 0 tmpfs /home/ilya/.cache tmpfs nodev,nosuid,noexec,mode=0700,uid=1000,size=2G 0 0 tmpfs /var/lib/wwwrun/.cache tmpfs nodev,nosuid,noexec,mode=0700,uid=30,size=2G 0 0 And it seems to me that you should not allow "decent" applications to run files from the cache, for reasons of security. In extreme cases, it can explicitly use /bin/sh to run, but do not require the ability to run any executable that can replace any other application with same permissons? And the application should not be crashed because it is not possible to do it. Do you think this is a bug? -- To unsubscribe, e-mail: opensuse-kde+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-kde+owner@opensuse.org