From owner-freebsd-stable  Mon Jul  3 16:34:22 2000
Delivered-To: freebsd-stable@freebsd.org
Received: from eagle.prod.itd.earthlink.net (eagle.prod.itd.earthlink.net [207.217.120.24])
	by hub.freebsd.org (Postfix) with ESMTP id 3C00137BA1A
	for <freebsd-stable@FreeBSD.ORG>; Mon,  3 Jul 2000 16:34:18 -0700 (PDT)
	(envelope-from cjc@earthlink.net)
Received: from dialin-client.earthlink.net (pool0708.cvx21-bradley.dialup.earthlink.net [209.179.194.198])
	by eagle.prod.itd.earthlink.net (8.9.3-EL_1_3/8.9.3) with ESMTP id QAA00869;
	Mon, 3 Jul 2000 16:34:10 -0700 (PDT)
Received: (from cjc@localhost)
	by dialin-client.earthlink.net (8.9.3/8.9.3) id QAA00320;
	Mon, 3 Jul 2000 16:31:17 -0700 (PDT)
Date: Mon, 3 Jul 2000 16:30:45 -0700
From: "Crist J. Clark" <cristjc@earthlink.net>
To: Brad Knowles <blk@skynet.be>
Cc: Vivek Khera <khera@kciLink.com>, freebsd-stable@FreeBSD.ORG
Subject: Re: fstab mount options
Message-ID: <20000703163045.A248@dialin-client.earthlink.net>
Reply-To: cjclark@alum.mit.edu
References: <m266qmc43b.fsf@reader.ptw.com> <14689.1084.894512.504331@onceler.kcilink.com> <v0422082db586be8b6c6b@[195.238.1.121]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0.1i
In-Reply-To: <v0422082db586be8b6c6b@[195.238.1.121]>; from blk@skynet.be on Tue, Jul 04, 2000 at 12:07:32AM +0200
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Tue, Jul 04, 2000 at 12:07:32AM +0200, Brad Knowles wrote:
> At 5:23 PM -0400 2000/7/3, Vivek Khera wrote:
> 
> >  # allow CD-ROM and ZIP drive user-mounting.
> >  for i in /dev/*acd0* /cdrom /dev/*da0* /zip
> >  do
> >   chmod 0755 $i
> >   chown $USER $i
> >  done
> 
> 	So, if you happen to have any regular fixed disks that are 
> /dev/*da0* (e.g., the ones that /, /usr, /var, etc... are on), you 
> will allow unprivileged users to mount them, presumably unmount them, 
> and otherwise muck about with them however they want?!?  Moof!
> 
> 
> 	I hope that this is on a machine that is effectively single-user 
> (i.e., just you), and not one that allows anyone else to ever log 
> in....

From the comment, I would say he has a SCSI Zip drive. The same line
could apply to Jaz, an ancient Bernoull, or the like.

The risk I see is does this method let users mount with setuid?
-- 
Crist J. Clark                           cjclark@alum.mit.edu


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message