From owner-freebsd-chat Thu Jan 4 4:26:28 2001 From owner-freebsd-chat@FreeBSD.ORG Thu Jan 4 04:26:26 2001 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from uranus.interscope.ro (unknown [193.226.188.3]) by hub.freebsd.org (Postfix) with ESMTP id 9026237B400 for ; Thu, 4 Jan 2001 04:26:22 -0800 (PST) Received: by URANUS with Internet Mail Service (5.5.2650.21) id ; Thu, 4 Jan 2001 14:22:55 +0200 Message-ID: From: Stefan KORONKA To: 'Rahul Siddharthan' Cc: chat@freebsd.org Subject: RE: desktops and mounting Date: Thu, 4 Jan 2001 14:22:53 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2650.21) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-chat@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > From: Rahul Siddharthan > > Recently while setting up a FreeBSD machine for desktop use, and > watching linux users on their machines, it seemed to me that > everything that can be done on linux can be done equally easily on > FreeBSD -- except non-root mounting of removable media (like floppies, > CDROMs). You can't allow user mounts simply by adding a "user" option > in /etc/fstab, and simple point-and-clicking in KDE/GNOME doesn't work > either. Yes, I am one of those who don't like to su every time I need to mount something. So I did the following: chmod 4555 /sbin/mount* chmod 4555 /sbin/umount Read the chmod man page to see what that 4 bit means. You can do the same for all the utilities who need root access. In order to improve security, you can something like: chgrp somegroup mount* chmod 4550 mount* and add your users to the "somegroup" group. Of course, you may need to change permision for the mount directory as well. (this works for me; i didn't read the FAQ about this, so I can't say anything about what is there. and yes, the result is that i can do something like "mount /cdrom", "mount_cd9660 /dev/something ~/mnt/cdrom" and such.) stefan (i really thing that this should be redirected to -questions, but i am too lasy to do this :) > > This can be pretty important to some people. There is a workaround in > the FAQ, but it's fairly complicated and the end result is you can > mount it to a mount point owned by you but you still can't create an > fstab entry and issue a simple command like mount ~/cdrom -- you have > to write the full mount command including the device etc. It may be > possible to configure KDE or GNOME to do the right thing -- I haven't > tried -- but even so, one may have to do this individually for every > user. Also, the FAQ entry issues dire warnings about system security > and so on. > > Any thoughts? > > Rahul > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-chat" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-chat" in the body of the message