Description: The `nosuid` mount option specifies that the filesystem cannot contain `setuid` files. Rationale: Setting this option on a file system prevents users from introducing privileged programs onto the system and allowing non-root users to execute them. Audit: Verify that the `nosuid` option is set if a `/var/log` partition exists.Run the following command and verify that nothing is returned:# mount | grep -E 's/var/logs' | grep -v nosuid Remediation: Edit the `/etc/fstab` file and add `nosuid` to the fourth field (mounting options) for the `/var/log` partition. See the `fstab(5)` manual page for more information.Run the following command to remount `/var/log` :# mount -o remount,nosuid /var/log.

[yes/no]

Run the following command to remount /var/log: # mount -o remount,nosuid /var/log