[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Seeking advice on automounter-like daemon starting at boot



On Sat, Oct 16, 2010 at 07:13:52PM -0300, Fernando Lemos wrote:
> Hello, mentors
disclaimer: i'm not a DD/DM

> I could make udisks-glue run as another user (say, nobody), but that
> would mean that the default config would not be able to mount devices.
> That's because PolicyKit will only allow udisks to mount devices if
> the user is a local user ("logged in" to ConsoleKit via
> ck-launch-session, the PAM connector or GDM) or the root user. I
> *think* I could provide PolicyKit policies to allow an user created by
> udisks-glue to mount those devices without root privileges, but I have
> no idea where to look for examples on how this might be done. I also
> don't know if it's worth the effort.
> 
> Any tips on how I should proceed? There's no other udisks automounters
> in Debian (there's a PPA package for [3], but it doesn't have an init
> script or a system-wide configuration file). I see the following
> options:
> 
> a) Submit the package as it is, i.e., with udisks-glue running as root
> b) Run udisks-glue as root, but don't start the init script by default
> c) Get rid of the init script, but keep the system-wide configuration file
> d) Create an user "udisks", add a PolicyKit rule to allow it to mount
> device files, use that for the init script (not even sure it's
> possible)
how would it leave the file permissions on the mounted filesystems?
Would them be readable/writable by local users?

> 
> Suggestions are greatly appreciated.
> 
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=594746
> [2] http://github.com/fernandotcl/udisks-glue
> [3] https://code.launchpad.net/~pitti/udisks-automounter/trunk
> 
> 
> Regards,
> Fernando
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-mentors-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> Archive: AANLkTinrgDWWiCJU=ixqdjirJAY42gj=eydQBrg_ss3m@mail.gmail.com">http://lists.debian.org/AANLkTinrgDWWiCJU=ixqdjirJAY42gj=eydQBrg_ss3m@mail.gmail.com
> 

-- 
1AE0 322E B8F7 4717 BDEA  BF1D 44BB 1BA7 9F6C 6333

Attachment: signature.asc
Description: Digital signature


Reply to: