Date: Mon, 12 Jan 2004 14:59:38 -0600 From: Eric F Crist <ecrist@adtechintegrated.com> To: Gautam Gopalakrishnan <ggop@madras.dyndns.org> Cc: freebsd-questions@freebsd.org Subject: Re: Mounting as non-root? Message-ID: <200401121459.47773.ecrist@adtechintegrated.com> In-Reply-To: <20040112205042.GA44664@madras.dyndns.org> References: <200401121441.05186.ecrist@adtechintegrated.com> <20040112205042.GA44664@madras.dyndns.org>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] On Monday 12 January 2004 02:50 pm, Gautam Gopalakrishnan wrote: > On Mon, Jan 12, 2004 at 02:40:54PM -0600, Eric F Crist wrote: > Content-Description: signed data > > > What is the most secure way to enable mounting of flash drives, cdroms, > > and floppies? I've seen solutions that include setting setuid on mount. > > I would rather not go this route. Is there any other easy, secure way? > > sudo is the easiest I've seen. I've stopped using su nowadays, for anything Gautam, I guess I should have specified a little clearer. My desktop users have an icon on their desktops so they can access the cdrom, usb flash drives, etc. They need the ability to just right-click an select mount or unmount. I have temporarily setuid on mount and umount, but this allows these users to mount and unmount core filesystems, too. I would like to get away from this. -- Eric F Crist AdTech Integrated Systems, Inc (612) 998-3588 [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQBAAwrDzdyDbTMRQIYRApvtAJ9nGJu9iMK4YV0whMF491UfDyI5EQCfY6rm RYj/e59mRhwxlZFxt+BEJcE= =H9fs -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200401121459.47773.ecrist>