*BSD News Article 97731

Return to BSD News archive 

Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!news.cs.su.oz.au!metro!metro!munnari.OZ.AU!news.ecn.uoknor.edu!news.wildstar.net!news.ececs.uc.edu!news.kei.com!nntprelay.mathworks.com!news.mathworks.com!cam-news-hub1.bbnplanet.com!cpk-news-hub1.bbnplanet.com!news.bbnplanet.com!newsfeed.internetmci.com!news.javanet.com!not-for-mail
From: Jack <harpoMARX@javanet.com>
Newsgroups: comp.unix.bsd.misc,comp.unix.bsd.freebsd.misc
Subject: Re: User mount possible?
Date: Fri, 13 Jun 1997 08:56:07 -0500
Organization: JavaNet Cafe
Lines: 39
Message-ID: <33A15177.41C67EA6@javanet.com>
References: <5nr27n$ees@vestein.arb-phys.uni-dortmund.de>
NNTP-Posting-Host: noho-us226.javanet.com
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 3.01 (X11; I; FreeBSD 2.2-RELEASE i386)
Xref: euryale.cc.adfa.oz.au comp.unix.bsd.misc:3570 comp.unix.bsd.freebsd.misc:43000

Wilhelm B. Kloke wrote:
> 
> I ran into the following problem. I am serving diskless workstations
> on FreeBSD (2.2, if that matters). I want the users of these
> workstations to be able to mount their local disks, floppies and
> CD-ROM, and use local swap space, if available. The man pages
> mount(2) tell me, that the mount syscall needs superuser privilege.
> But I don't want those users to be superusers.
> 
> The most clean solution I found out seems to write a suid wrapper
> for the operations needed. Or is it possible to do this be setting
> suitable group or user permissions on the device entry and the
> mount point?
> 
> Does anybody have a suid script usable for my purpose already?
> 
> Thanx, wbk
> --
> Dipl.-Math. Wilhelm Bernhard Kloke
> Institut fuer Arbeitsphysiologie an der Universitaet Dortmund
> Ardeystrasse 67, D-44139 Dortmund, Tel. 0231-1084-257 vormittags
You could install sudo. Works fine for me.
Alternatively, you could create a "floppy" group, for instance, and then
change group membership of those who should have access as well as the
device files in /dev/ themselves. (Don't forget to make these changed
devices writable by the floppy group)

Hope this is clear.
You might want to check out dejanews for more info.
good luck,
John Szumowski
-- 
=--------=/////////////////\\\\\\\\\\\\\\\\\\\\=--------=
 ((___)) |           John Szumowski            | ((___))
 [ x x ] |    http://www.javanet.com/~harpo    | [ x x ]
  \   /  =\\\\\\\\\\\\\\\\\////////////////////=  \   / 
  (' ')  |  remove "MARX" to send me a message |  (' ')
   (U)   |                                     |   (U)
=--------=                                     =--------=