[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Did you know ...

To: silug-discuss@silug.org
Subject: Re: Did you know ...
From: "James L. Burke" <jburke@burkepoirier.com>
Date: Tue, 27 Feb 2001 11:20:11 -0600
Organization: Southern Illinois Linux Users Group
References: <Pine.LNX.4.21.0102271033440.16521-100000@mtvernon1.accessus.net>
Reply-To: silug-discuss@silug.org
Sender: owner-silug-discuss@silug.org

Tighe wrote:
> 
> Ummm . . . you might want to make that a umask=077 so that only the
> mounted owner can write to it.  You might also want to make that a noexec
> instead of exec for security also.  Is this a home system or a multiuser
> system?
> 

both the machines I implemented this on are "single" user systems (a
laptop and my desktop at work).  By "single" user I don't mean runlevel
1, I mean they are not accepting connections from other machines (and
nobody else in our internal network would have a clue on how to make a
connection - not yet anyway), so I am the only person using these two
machines at any given time.

I will, however, be needing to implement this on our LTSP server with
"local apps" enabled.  Therefore, before I do that I will need to
research security issues of "umask" (and also exec vs. noexec).

Thanks for the tip.

jburke.


> Tighe
> 
> >Date: Tue, 27 Feb 2001 09:59:30 -0600
> >From: James L. Burke <jburke@burkepoirier.com>
> >Reply-To: silug-discuss@silug.org
> >To: SILUG Discuss <silug-discuss@silug.org>
> >Subject: Did you know ...
> >
> >Hello all,
> >
> >I recently I spent a couple of hours trying to figure out how to
> >mount/use vfat filesystems from within Linux without being root.  The
> >mount part proved to be fairly easy, but the USE part seemed tougher.  I
> >know most of you are probably shocked that it actually took someone
> >hours to figure this out, but I thought there might be others on the
> >list who could benefit from my pain ...
> >
> >add this line to your /etc/fstab:
> >
> >/dev/fd0       /mnt/floppy     auto    noauto,user,rw,exec,umask=000   0 0
> >
> >or for a zip disk at hdd4 add:
> >
> >/dev/hdd4      /mnt/zip        auto    noauto,user,rw,exec,umask=000   0 0
> >
> >(of course, you have to create the /mnt/zip directory first)
> >
> >The "umask=000" seemed to be the real fix for my problem.  The gurus
> >among us probably have a better solution.  Please let me know if the
> >"fix" I found can be accomplished in a better way.
> >
> >Have a great day ...
> >
> >jburke (the handsome one of the two jburkes)  ;)
> >-
> >To unsubscribe, send email to majordomo@silug.org with
> >"unsubscribe silug-discuss" in the body.
> >
> 
> --
> Tighe Schlottog         Sys Admin at large        /emry\"@"/accessus.net\
>                              ook ook
> "Mr. Wizard, I think I'd rather be a coot than a hacker. Yeah, sure, every
> now and then a giant pink-haired ape would come running after me and
> chase me into the lake, but really, could it be that much worse? I'd have
> a tiny little brain and wouldn't be expected to worry about anything."
>                                                 -jwz from www.jwz.org
> 
> -
> To unsubscribe, send email to majordomo@silug.org with
> "unsubscribe silug-discuss" in the body.
-
To unsubscribe, send email to majordomo@silug.org with
"unsubscribe silug-discuss" in the body.

Follow-Ups:
- Re: Did you know ...
  - From: Tighe <emry@accessus.net>

References:
- Re: Did you know ...
  - From: Tighe <emry@accessus.net>

Prev by Date: Re: Did you know ...
Next by Date: Re: Did you know ...
Prev by thread: Re: Did you know ...
Next by thread: Re: Did you know ...
Index(es):
- Date
- Thread