From owner-freebsd-questions@FreeBSD.ORG Thu Feb 21 01:45:51 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3A3FB16A401 for ; Thu, 21 Feb 2008 01:45:51 +0000 (UTC) (envelope-from a-bb@gmx.net) Received: from pd2mo1so.prod.shaw.ca (idcmail-mo1so.shaw.ca [24.71.223.10]) by mx1.freebsd.org (Postfix) with ESMTP id 678F113C447 for ; Thu, 21 Feb 2008 01:45:50 +0000 (UTC) (envelope-from a-bb@gmx.net) Received: from pd2mr6so.prod.shaw.ca (pd2mr6so-qfe3.prod.shaw.ca [10.0.141.9]) by l-daemon (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0JWK006NZCQX6740@l-daemon> for freebsd-questions@freebsd.org; Wed, 20 Feb 2008 17:44:57 -0700 (MST) Received: from pn2ml3so.prod.shaw.ca ([10.0.121.147]) by pd2mr6so.prod.shaw.ca (Sun Java System Messaging Server 6.2-7.05 (built Sep 5 2006)) with ESMTP id <0JWK00IBLCQXA170@pd2mr6so.prod.shaw.ca> for freebsd-questions@freebsd.org; Wed, 20 Feb 2008 17:44:58 -0700 (MST) Received: from [192.168.1.103] ([24.68.224.245]) by l-daemon (Sun Java System Messaging Server 6.2-7.05 (built Sep 5 2006)) with ESMTP id <0JWK00K4KCQW5V20@l-daemon> for freebsd-questions@freebsd.org; Wed, 20 Feb 2008 17:44:57 -0700 (MST) Date: Wed, 20 Feb 2008 16:45:58 -0800 From: Andrew Bradford To: freebsd-questions@freebsd.org Message-id: <47BCC9C6.9050501@gmx.net> MIME-version: 1.0 Content-type: text/plain; charset=ISO-8859-1; format=flowed Content-transfer-encoding: 7bit User-Agent: Thunderbird 2.0.0.6 (X11/20071022) Subject: Mounting FS read-only for specific user (or root) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 21 Feb 2008 01:45:51 -0000 Hi all, I'm trying to set up a mounted filesystem that is read-write for root, but read-only for anyone else. It will be mounted as a backup directory, so files listed in that directory will be owned by current users on the system but can't be writeable, regardless of the file permissions. Example hd2 mounted rw in /root/backup-rw hd2 mounted ro in /backups Only root should be able to write to anything under /root/backup-rw/ even though normal users will own files in that directory. Normal users should be able to read anything that permissions allow in /backups so that they can restore files from the backup. I was planning on using the nullfs fs type to achieve the second mountpoint for the fs. Is this possible? Thanks, Andrew