While you're doing that, mount the partition with noexec:

              noexec Do not allow execution of  any  binaries  on
                     the  mounted file system.  This option might
                     be useful for a server that has file systems
                     containing  binaries for architectures other
                     than its own.

Also good for parititions that are writable by untrusted users. It was suggested to me recently that the whole web root should be on a noexec partition, with cgi's symlinked from /usr/lib (or, presumably, other trusted partitions).