Hello
Thanks for your reply (this goes to Oswald, too)
It seems that I know so little, that my question was beside the point. :)
Please, let me have another go:
1) I want only root to be able to mount anything but floppies.
I removed "user" from the list of mount options for the cd drives in
/etc/fstab.
2) I want only users that belong to the group "cdrom" to have access to
cds at all, if and when any are mounted under /mnt/cdrom and
/mnt/burner. Other users shouldn't even be able to determine if there
is a cd mounted.
I set the permissions on the mountpoints like this:
dr-xr-x--- root cdrom ... and checked that /dev/scd* belong to the
cdrom group as well.
3) If a mounted cd is pure ISO9660, I don't care about permissions
_under_ the mountpoints, because a unauthorized user couldn't even cd
to them. If it has rockridge extensions, these should apply.
This is where I'm stumped - as soon as I mount a drive, the
mountpoints permissions are reset to dr-xr-xr-x root root ...
and everyone who can login remotely may browse an ISO cd at will!
If asked a friend about this, who's generally more Linux educated than me
and he just said who cares, noone's ever thought about this.
So maybe I'm not making much sense to you -sorry.
Christian
> -----Original Message-----
> From: Ron Rademaker [mailto:[EMAIL PROTECTED]
> Sent: Friday, April 14, 2000 9:51 AM
> To: Christian Pernegger
> Cc: Debian user list; recipient list not shown: ;
> Subject: Re: mount & ownership problem (newbie, maybe)
>
>
> I'm not sure but I think a chmod on /dev/scd0 will work...
> But as far as I know every user was always allowed to read a mounted
> cdrom, I never had a permission denied...
>
> Ron Rademaker
>
> On Thu, 13 Apr 2000, Christian Pernegger wrote:
>
> > Hello
> >
> > I created the following mountpoint directories under /mnt
> > name (user/group) device (user/group)
> > floppy (root/floppy) /dev/fd0 (root/floppy)
> > cdrom (root/cdrom) /dev/scd0 (root/cdrom)
> > burner (root/cdrom) /dev/scd1 (root/cdrom)
> >
> > Now if I want to mount the cd rom:
> >
> > # su
> > ...
> > # mount /mnt/cdrom
> >
> > That works fine. The only problem is, after that the /mnt/cdrom dir's
> > ownerships will be (root/root) and thus inaccessible by members
> of the cdrom
> > group. If I unmount it, everything is back to normal...
> >
> > How do I allow a group to access a mountpoint when the device is mounted?
> >
> > Christian
