Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

only mount certain FS as normal user?

Status
Not open for further replies.
ksas025

ksas025

Technical User
Jun 3, 2004
92
US
I want to allow normal users to mount some remote filesystems but not be able to mount (or unmount) local filesystems. I understand that if a regular user is in the system group it will have access to un/mount any filesystem in /etc/filesystems that it has write access to. In my opinion this is too much authority.

Is there are way to allow a user to un/mount one or two configured filesystems and deny mount rights to the remainder of the filesystems?

Thanks!

A.
 
Sort by date Sort by votes
One way i can think of for now is to use sudo!

You can write a script (make it owned by the user) and inside that script you can use the mount command called by sudo!

But within the script you can specify the only allowed filesystems to be mounted by that user!?! (even simpler, the filesystems that the user can't mount or unmount)

Regards,
Khalid
 
Upvote 0 Downvote
Thanks for the response khalidaaa.

That is not a bad idea but I think might be one problem. If the script is owned by the regualr user calling it, what prevents that user from modifing the script to allow for any mounts? Do you agree or am I missing something?

Currently I have never used sudo but I hear good things. Is sudo a package I can install? I am running AIX 4.3.3.
 
Upvote 0 Downvote
Upvote 0 Downvote
or make the script owned by root, with execute (not read or write) permissions for any user.
 
Upvote 0 Downvote
ngxGraz, if the user can't read a shell script, they can't execute it.

You could, however make a single script owned by root, chmod it 700, and grant the user sudo privileges to run the script.

Another option, if you already know all possible remote directories, would be to give the user sudo permissions to execute the exact commands to mount them.

- Rod


IBM Certified Advanced Technical Expert pSeries and AIX 5L
CompTIA Linux+
CompTIA Security+

A Simple Code for Posting on the Web
 
Upvote 0 Downvote
RodKnowlton said:
Another option, if you already know all possible remote directories, would be to give the user sudo permissions to execute the exact commands to mount them.
Click to expand...

Yep...this is how I do it.
 
Upvote 0 Downvote
Thanks for all your responses.

It seems that sudo is the way to go here. I only wish AIX had something similar to Linux in which /etc/fstab specifies what filesystems regular users have un/mount permission on.

Anyways, Thanks again!

Alex
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

DanGwo
  • Locked
  • Question
Find command list only the unique file name
Replies
1
Views
145
iggsterman
iggsterman
amandeepgautam
  • Locked
  • Question
Create shared libs on AIX (with certain libs which are statically linked)
Replies
0
Views
163
amandeepgautam
amandeepgautam
AnjuSingh
  • Locked
  • Question
Hello, I have a generic user whi
Replies
3
Views
152
iggsterman
iggsterman
WFdon
  • Locked
  • Question
NFS mount with non-identical UIDs
Replies
0
Views
118
WFdon
WFdon
Amandeep Gautam
  • Locked
  • Question
equivalent of /proc/mounts in AIX 1
Replies
5
Views
271
unixfreak
unixfreak

Part and Inventory Search

Sponsor

Back
Top