Re: ownership of target of /dev/cdroms/cdroms0 in devfs
On Sun, Sep 16, 2001 at 09:40:06PM +0200, Eamon Roque wrote:
> Hi!
>
> Why is it then that when I mount a cdrom by hand, I can't change the options?
> When I do a "mount -o exec /cdrom" I get still have the following in /etc/mtab:
> /dev/sr1 on /cdrom type iso9660 (ro,nosuid,nodev)
>
> Am I missing something?! Before I used Debian, this wasn't a problem (SuSE 7.0 with the original devfsd from R.Gooch's site). Has this anything to do with the default config?!
>
Actually this has nothing to do with this thread, but anyway:
There are two sets of permissions on your cdrom
A. The permissions on /dev/cdrom (the topic that started this thread)
determine who can do things without mounting, such as playing audio
CDs, ejecting the tray or burning CDs.
B. The options in /etc/fstab determine the defaults for mount. As an
important security precaution, mount can only override these if run
as root. The whole point of putting e.g. noexec in /etc/fstab is
to prevent users (or viruses run by users) from enabling exec
permissions contrary to roots orders (as given in /etc/fstab).
So, mount -o works (by design) only if you are root.
--
This message is hastily written, please ignore any unpleasant wordings,
do not consider it a binding commitment, even if its phrasing may
indicate so. Its contents may be deliberately or accidentally untrue.
Trademarks and other things belong to their owners, if any.
Reply to: