Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 12 Jan 2004 14:59:38 -0600
From:      Eric F Crist <ecrist@adtechintegrated.com>
To:        Gautam Gopalakrishnan <ggop@madras.dyndns.org>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: Mounting as non-root?
Message-ID:  <200401121459.47773.ecrist@adtechintegrated.com>
In-Reply-To: <20040112205042.GA44664@madras.dyndns.org>
References:  <200401121441.05186.ecrist@adtechintegrated.com> <20040112205042.GA44664@madras.dyndns.org>
next in thread | previous in thread | raw e-mail | index | archive | help 

--Boundary-02=_DrwAAzixvtw5jVB
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Content-Description: signed data
Content-Disposition: inline

On Monday 12 January 2004 02:50 pm, Gautam Gopalakrishnan wrote:
> On Mon, Jan 12, 2004 at 02:40:54PM -0600, Eric F Crist wrote:
> Content-Description: signed data
>
> > What is the most secure way to enable mounting of flash drives, cdroms,
> > and floppies?  I've seen solutions that include setting setuid on mount=
=2E=20
> > I would rather not go this route.  Is there any other easy, secure way?
>
> sudo is the easiest I've seen. I've stopped using su nowadays, for anythi=
ng

Gautam,

I guess I should have specified a little clearer.  My desktop users have an=
=20
icon on their desktops so they can access the cdrom, usb flash drives, etc.=
 =20
They need the ability to just right-click an select mount or unmount.  I ha=
ve=20
temporarily setuid on mount and umount, but this allows these users to moun=
t=20
and unmount core filesystems, too. I would like to get away from this.
=2D-=20
Eric F Crist
AdTech Integrated Systems, Inc
(612) 998-3588
--Boundary-02=_DrwAAzixvtw5jVB
Content-Type: application/pgp-signature
Content-Description: signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQBAAwrDzdyDbTMRQIYRApvtAJ9nGJu9iMK4YV0whMF491UfDyI5EQCfY6rm
RYj/e59mRhwxlZFxt+BEJcE=
=H9fs
-----END PGP SIGNATURE-----

--Boundary-02=_DrwAAzixvtw5jVB--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200401121459.47773.ecrist>