Thank you Chris. Do you (or anyone else) know if this requirement is documented somewhere? The implementation has security requirement requiring STIG compliance. Having /tmp mounted exec (without noexec) is a finding. So, to go with this it needs to be documented as a vendor dependency. But I haven't found this in anything from Splunk as a requirement.
... View more