Re: Allowing a group to use fstab mount-points

[RW]

On Monday 25 April 2005 05:06, Joel wrote:
 then they will type

     sudo -u mounter mount /mnt/cdrom

The issue is that gui applications that support mounting expect that the user 
can mount the device, and that there is a usable fstab entry. FreeBSD  can be 
set-up to allow the former, but the latter requires per user fstab entries.  

I was just wondering if there is any way to curcumvent the restriction that a 
mount point must be owned by the mounter.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Allowing a group to use fstab mount-points

[Lowell Gilbert]

RW [EMAIL PROTECTED] writes:

 That's interesting, I wasn't aware of fbtab before. However it doesn't really 
 help. As I read it, it only allows the ownership of devices to be changed, 
 not mount-points. 

No, it will work on *any* file, including directories.  It's *usually*
useful for device files, but it will certainly change the ownership on
directories as well.  

Just try it.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Allowing a group to use fstab mount-points

[Lowell Gilbert]

RW [EMAIL PROTECTED] writes:

 I have fstab entries for several devices that aren't mounted at boot, but 
 when 
 mounting as an ordinary user, I can only mount a device on a mount-point that 
 I own.
 
 Is it possible to relax this so that any user in the operator group can make 
 use of the same fstab entries? I know I could make separate entries for each 
 user, but it's a bit cumbersome. 

Most people don't really want a user to be able to mount devices any
time, but only when that user is on the console.  fbtab(5) and
equivalent functionality under X take care of that quite well.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]

Re: Allowing a group to use fstab mount-points

[Joel]

   I have fstab entries for several devices that aren't mounted at boot, but
(B   when mounting as an ordinary user, I can only mount a device on a
(B   mount-point that I own.
(B  
(B   Is it possible to relax this so that any user in the operator group can
(B   make use of the same fstab entries? I know I could make separate entries
(B   for each user, but it's a bit cumbersome.
(B
(BHave you looked at sudo?
(B
(B(The way I'm recommending sudo for everything, you'd think it was peanut
(Bbutter.)
(B
(B  Most people don't really want a user to be able to mount devices any
(B  time, but only when that user is on the console.  fbtab(5) and
(B  equivalent functionality under X take care of that quite well.
(B 
(B That's interesting, I wasn't aware of fbtab before. However it doesn't really 
(B help. As I read it, it only allows the ownership of devices to be changed, 
(B not mount-points. 
(B
(B?
(B
(BMount points are normal directories. Not sure what you're aiming at
(Bthere.
(B
(B On a desktop machine, without remote access, there isn't really any 
(B significant problem with users mounting dvds etc. Actually, I normally mount 
(B devices as root, it's just that when other people (who are definitely never 
(B going to be in my wheel group) borrow my computer they make patronizing 
(B comments if this kind of thing isn't straightforward, and clean.
(B
(BWell, we don't want to be rude about the people who borrow your computer,
(Bbut if they make patronizing remarks about something like this, I'm not
(Bsure I'd let them borrow my computer.  ;)
(B
(B Basically, what I'd like is for users to be able to mount certain devices 
(B from 
(B KDE, without going through hoops, or using strange mount-points. 
(B
(BFWIW, I've done this with sudo, though I don't think if I've done it
(Bwith sudo on freebsd. But you ought to be able to set up sudo to allow
(Bthe user you loan them mount whatever. Just be careful. If they are
(Bmaking patronizing remarks, you definitely don't want them being able to
(Bget root. ;-|:
(B
(BRough idea -- 
(B
(BSet up a new user, maybe named "mounter", member of operator, no login
(Bshell, password blocked, etc. Allocate a /home/mounter for the account,
(Bjust in case, and set PATH to empty. Put as many bumps in the road as
(Byou have time.
(B
(BIf the account you loan out to these guys is "loaner", you can put an
(Bentry in sudoers that will allow the "loaner" account to do one command,
(Band one command only, to mount the CD. (I assume it's the CD.) Be
(Bcareful how you specify the parameters, so you don't open a hole for
(Bthem. I think mounting is one of the examples for sudoers.
(B
(BIf the command you set up in sudoers is something like 
(B
(Bmount /mnt/cdrom
(B
(Bthen they will type
(B
(Bsudo -u mounter mount /mnt/cdrom
(B
(BI'd refrain from giving them NOPASSWD on it, just because they're
(Bobnoxious. But if you've been logging in for them so they won't have a
(Bpassword, you'll either have to let them have the password to the loaner
(Baccount after all so they can enter it after the command, or you'll have
(Bto give them the NOPASSWD option in sudoers .
(B
(BI'd give you a guess of what the line for sudoers would look like, but,
(Bas I say, mounting is one of the examples you'll see when you man
(Bsudoers.
(B
(BHTH
(B
(B--
(BJoel Rees   [EMAIL PROTECTED]
(Bdigitcom, inc.   $B3t<02q

Allowing a group to use fstab mount-points

[RW]

I have fstab entries for several devices that aren't mounted at boot, but when 
mounting as an ordinary user, I can only mount a device on a mount-point that 
I own.

Is it possible to relax this so that any user in the operator group can make 
use of the same fstab entries? I know I could make separate entries for each 
user, but it's a bit cumbersome. 
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to [EMAIL PROTECTED]