That was the idea from the start (of this thread).
> I can even imagine not-owner-hardlinks as not the only security option in
> security options config sections.
Exactly. There's the noexec stack patch (the latest version that _does_
work with trampolines) too.
-Rob H.