On Thursday 20 November 2003 16:46, Micha Feigin wrote:
> On Thu, Nov 20, 2003 at 03:06:11PM +0200, Eran Tromer wrote:
> > How do you let non-root users mount arbitrary filesystems,
> The proper way would probably be to use sudo and give all authorised
> users access to running mount (that would allow you to give that ability
> only to the users you want).
Hmmm... let somebody mount *arbitrary* filesystems to *arbitrary*
directories? Is that what you really want Eran?
# bring my cooked floppy from home
$ sudo mount /dev/fd0 /etc
# Now I have my /etc/passwd
So, you may give this guy the root passwd directly and save yourself
from configuring sudo.
Mount is priviledged for a reason. You may let users to mount
only under very controled conditions -- The most important
is the mount point (as my example showed). There are other
important issues of course (e.g: nosuid, nodev).
As I always phrase it:
"There's no such thing as 'half-root'. Either you are or you don't"
--
Oron Peled Voice/Fax: +972-4-8228492
[EMAIL PROTECTED] http://www.actcom.co.il/~oron
"When you understand UNIX, you will understand the world.
When you understand NT....you will understand NT" - Richard Thieme
=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
