From owner-freebsd-questions Wed Aug 11 9: 9:43 1999 Delivered-To: freebsd-questions@freebsd.org Received: from gwdu60.gwdg.de (gwdu60.gwdg.de [134.76.10.60]) by hub.freebsd.org (Postfix) with ESMTP id A028715548 for ; Wed, 11 Aug 1999 09:09:12 -0700 (PDT) (envelope-from kheuer@gwdu60.gwdg.de) Received: from localhost (kheuer@localhost) by gwdu60.gwdg.de (8.9.2/8.9.2) with ESMTP id SAA03048; Wed, 11 Aug 1999 18:08:52 +0200 (CEST) (envelope-from kheuer@gwdu60.gwdg.de) Date: Wed, 11 Aug 1999 18:08:52 +0200 (CEST) From: Konrad Heuer To: Cillian Sharkey Cc: questions@FreeBSD.ORG Subject: Re: users mounting filesystems In-Reply-To: <37B18001.D2A1881@baker.ie> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=X-UNKNOWN Content-Transfer-Encoding: QUOTED-PRINTABLE Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Wed, 11 Aug 1999, Cillian Sharkey wrote: > > > AFAIK in Linux one can add the "user" mount option in /etc/fstab > > > and any user can then mount that filesystem (not until I put in the > > > nosuid,nodev,noexec,etc.. options to limit their use) > >=20 > > > I'm aware it's a potential security risk, but is there any clean > > > way of giving a user the ability to mount an msdos floppy for example= =2E. > > > > > > in the previous discussions, amd, sudo and some other methods were > > > offered.. > >=20 > > I use sudo to give some experienced users (e.g. username expert) the > > ability to mount/umount. For convenience, I set aliases in /etc/profile > > and /etc/csh.login: > >=20 > > if [ "$USER" =3D expert ]; then > > alias mount=3D'/usr/local/bin/sudo /sbin/mount' > > alias umount=3D'/usr/local/bin/sudo /sbin/umount' > > fi >=20 > Hmm..doing this means that they have access to mount/unmount > any filesystem they want to (plus override any options in /etc/fstab), > which is not what I want when they only need to be able to mount a msdos > floppy disk for example.. >=20 > ..as I mentioned above, Linux has a "user" mount option which can be > used > on specified filesystems in /etc/fstab, perhaps BSD could have something > similar or is there a better way to do this ? Hmm if you don't want the user to give the right to mount/umount everything sudo may not do well. Alternatively, you might chmod 4755 /sbin/mount_msdos (if not set so by default) to make any user call mount_msdos /dev/fd0 ~/users_own_dir. Regards // // Konrad Heuer ____ ___ _____= __=20 // Gesellschaft f=FCr wissenschaftliche / __/______ ___ / _ )/ __= / _ \ // Datenverarbeitung mbH G=D6ttingen / _// __/ -_) -_) _ |\ \/= // / // Am Fa=DFberg, D-37077 G=D6ttingen /_/ /_/ \__/\__/____/___= /____/=20 // Deutschland (Germany) ----- The Power to Serve ----= - // http://www.freebsd.org // kheuer@gwdu60.gwdg.de // To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message