From owner-freebsd-chat  Thu Jan  4  4:37:10 2001
From owner-freebsd-chat@FreeBSD.ORG  Thu Jan  4 04:37:08 2001
Return-Path: <owner-freebsd-chat@FreeBSD.ORG>
Delivered-To: freebsd-chat@freebsd.org
Received: from nef.ens.fr (nef.ens.fr [129.199.96.32])
	by hub.freebsd.org (Postfix) with ESMTP id B0CF137B400
	for <chat@freebsd.org>; Thu,  4 Jan 2001 04:37:06 -0800 (PST)
Received: from corto.lpt.ens.fr (corto.lpt.ens.fr [129.199.122.2])
          by nef.ens.fr (8.10.1/1.01.28121999) with ESMTP id f04Cb0M13226
          ; Thu, 4 Jan 2001 13:37:00 +0100 (CET)
Received: from (rsidd@localhost)
          by corto.lpt.ens.fr (8.9.3/jtpda-5.3.1) id NAA18844
          ; Thu, 4 Jan 2001 13:36:59 +0100 (CET)
Date: Thu, 4 Jan 2001 13:36:59 +0100
From: Rahul Siddharthan <rsidd@physics.iisc.ernet.in>
To: Stefan KORONKA <KoronkaS@interscope.ro>
Cc: chat@freebsd.org
Subject: Re: desktops and mounting
Message-ID: <20010104133659.E10414@lpt.ens.fr>
References: <D08F9E2FE307D411857300104B34F1A202DB40@URANUS>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <D08F9E2FE307D411857300104B34F1A202DB40@URANUS>; from KoronkaS@interscope.ro on Thu, Jan 04, 2001 at 02:22:53PM +0200
X-Operating-System: FreeBSD 3.4-STABLE i386
Sender: Rahul.Siddharthan@lpt.ens.fr
Sender: owner-freebsd-chat@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Stefan KORONKA said on Jan  4, 2001 at 14:22:53:
> > From: Rahul Siddharthan 
> > 
> > Recently while setting up a FreeBSD machine for desktop use, and
> > watching linux users on their machines, it seemed to me that
> > everything that can be done on linux can be done equally easily on
> > FreeBSD -- except non-root mounting of removable media (like floppies,
> > CDROMs).  You can't allow user mounts simply by adding a "user" option
> > in /etc/fstab, and simple point-and-clicking in KDE/GNOME doesn't work
> > either.
> 
> Yes, I am one of those who don't like to su every time I need to mount
> something.  So I did the following:
> 
> chmod 4555 /sbin/mount*
> chmod 4555 /sbin/umount
> 
> Read the chmod man page to see what that 4 bit means.  You can do the same
> for all the utilities who need root access.  In order to improve security,
> you can something like:
> 
> chgrp somegroup mount*
> chmod 4550 mount*
> 
> and add your users to the "somegroup" group.

Interesting.  Now that I look and see, the mount program is already
suid on linux systems.  However, won't doing this mean that an arbitrary
user can mount/dismount any filesystem, not just the CDROM?  (linux
has the "user" option in /etc/fstab which is required for non-root
mounting.)  

Thanks

Rahul.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-chat" in the body of the message