[gentoo-user] HAL: how to prohibit mounting certain partitions

[gentoo-user] HAL: how to prohibit mounting certain partitions

[Vladimir Rusinov]

[-- Attachment #1: Type: text/plain, Size: 530 bytes --]

(I have not get help in native language list :(. And, sorry for my English)

I have windows & Linux installed on the same hard disk.
In Linux I've set up KDE + hal. It allows users to mount any removable
devices, and also windows partition.
I don't wanna to disable ntfs in kernel, but I don't want to users be able
to mount windows partition (that's a security issue).
So, how can I prohibit hal to mount /dev/sda*?

Thanks.

-- 
Vladimir Rusinov
GreenMice Solutions: IT-решения на базе Linux
http://greenmice.info/

[-- Attachment #2: Type: text/html, Size: 637 bytes --]

Re: [gentoo-user] HAL: how to prohibit mounting certain partitions

[Mick]

[-- Attachment #1: Type: text/plain, Size: 679 bytes --]

On Saturday 01 September 2007, Vladimir Rusinov wrote:
> (I have not get help in native language list :(. And, sorry for my English)

No worries.  :)

> I have windows & Linux installed on the same hard disk.
> In Linux I've set up KDE + hal. It allows users to mount any removable
> devices, and also windows partition.
> I don't wanna to disable ntfs in kernel, but I don't want to users be able
> to mount windows partition (that's a security issue).
> So, how can I prohibit hal to mount /dev/sda*?

Try entering the respective partition in /etc/fstab as noauto and mountable 
only by e.g. root, or a suitable group id.

Hope this helps.
-- 
Regards,
Mick

[-- Attachment #2: This is a digitally signed message part. --]
[-- Type: application/pgp-signature, Size: 189 bytes --]

Re: [gentoo-user] HAL: how to prohibit mounting certain partitions

[Eric Martin]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Mick wrote:
> On Saturday 01 September 2007, Vladimir Rusinov wrote:
>> (I have not get help in native language list :(. And, sorry for my English)
> 
> No worries.  :)
> 
>> I have windows & Linux installed on the same hard disk.
>> In Linux I've set up KDE + hal. It allows users to mount any removable
>> devices, and also windows partition.
>> I don't wanna to disable ntfs in kernel, but I don't want to users be able
>> to mount windows partition (that's a security issue).
>> So, how can I prohibit hal to mount /dev/sda*?
> 
> Try entering the respective partition in /etc/fstab as noauto and mountable 
> only by e.g. root, or a suitable group id.
> 
> Hope this helps.

Also, IIRC NTFS by default mounts 500 root root.  you have to change it
via the mount command to get anything different.

eg.

mount /dev/sda1 /mnt/ntfs -o gid=users,umask=0227

If you'd like R/W acccess to it you need to emerge captive-ntfs,  I did
a search and all I can find is ntfs-3g.  Does anyone know if captive
turned into this?  I did a quick search on the webpage and couldn't find
anything.  Also, you'll need FUSE w/both.

Eric
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFG2UQ8aiVxdKlBO58RAtp3AJ416hkmdL3ST+pPxqW7TPLAJjjm4ACcCQoo
iBTgUjMq5qURoHvlqSZIyR8=
=ksFR
-----END PGP SIGNATURE-----
-- 
gentoo-user@gentoo.org mailing list

[gentoo-user] Re: HAL: how to prohibit mounting certain partitions

[Marc Blumentritt]

Eric Martin schrieb:
> If you'd like R/W acccess to it you need to emerge captive-ntfs,  I did
> a search and all I can find is ntfs-3g.  Does anyone know if captive
> turned into this?  I did a quick search on the webpage and couldn't find
> anything.  Also, you'll need FUSE w/both.

Captive is the old way, ntfs-3g is the new (and better) way. It is a new
written driver, which is planned to be merged with the ntfs-tools
(a.f.a.i.k.).

Regards,
Marc

-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] HAL: how to prohibit mounting certain partitions

[Eric Martin]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 > mount /dev/sda1 /mnt/ntfs -o gid=users,umask=0227
> 
> If you'd like R/W acccess to it you need to emerge captive-ntfs,  I did
> a search and all I can find is ntfs-3g.  Does anyone know if captive
> turned into this?  I did a quick search on the webpage and couldn't find
> anything.  Also, you'll need FUSE w/both.
> 
> Eric

Answered my own question.  CaptiveNTFS [1] didn't turn into ntfs-3g.

[1]http://en.wikipedia.org/wiki/Captive_NTFS
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFG2UpaaiVxdKlBO58RAvRXAJ9dh7yqQ55k4bt02ZFkzczCM2xSJACdF9Ke
iJ9nrWNg1xpUVhWCusOewVI=
=hu5x
-----END PGP SIGNATURE-----
-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] HAL: how to prohibit mounting certain partitions

[Vladimir Rusinov]

[-- Attachment #1: Type: text/plain, Size: 723 bytes --]

On 9/1/07, Mick <michaelkintzios@gmail.com> wrote:
>
> > I have windows & Linux installed on the same hard disk.
> > In Linux I've set up KDE + hal. It allows users to mount any removable
> > devices, and also windows partition.
> > I don't wanna to disable ntfs in kernel, but I don't want to users be
> able
> > to mount windows partition (that's a security issue).
> > So, how can I prohibit hal to mount /dev/sda*?
>
> Try entering the respective partition in /etc/fstab as noauto and
> mountable
> only by e.g. root, or a suitable group id.
>
> Hope this helps.



Yeah, thanks a lot.
It's simple but it works. :)

-- 
Vladimir Rusinov
GreenMice Solutions: IT-решения на базе Linux
http://greenmice.info/

[-- Attachment #2: Type: text/html, Size: 1121 bytes --]