My aim is to prevent hackers or malware from using privilege escalation or any other exploit to modify /usr file system. In that case will mounting /usr as ro be helpful? Since Linux does not have internet security suites like Windows or Mac OS has this was supposed to protect the system.Note that generally in order to write in /usr you need to be root, and if you're root, you're just one "mount -o rw,remount /usr" away from writing whatever you want in /usr.
If you want to protect /usr from *yourself* (e.g. accidental f*ck up), then it's a good thing to do.
If you want to protect from "hackers" or "malware" then it's not going to make a difference (I'd submit that if a piece of malware (or hacker) gets root and wants to tweak your /usr, one of the first things they will do is remount /usr if/as required).
Statistics: Posted by DebianFox — 2024-06-04 05:28