Fedora/haldaemon puzzle

---

• From: Dave Close <dave@xxxxxxxxxxx>
• Date: Wed, 22 Feb 2006 22:30:13 +0000 (UTC)

---

Recent versions of Fedora have included the hardware abstraction layer
daemon (haldaemon). It's a nice thing in some ways, but it complicates
life greatly. One thing it does is cause an entry to be added to fstab
when a USB drive is attached. That's nice because the drive name is not
always the same. Letting hal handle it means I can deal only with the
mount point and not have to check which SCSI device is involved.

By default, hal doesn't add any user mount options to the new entries,
so only root can mount the drive. That can be inconvenient, but changing
hal's behavior requires finding the right XML file and making a change:
a non-trivial task, especially with only limited examples provided and
almost no general documentation.

Here's the puzzle. On one of my boxes, I have several users defined.
When any one of them tries to mount a USB drive, he gets the message,
"only root can do that", exactly as I would expect (but not as I want).
But when /my/ user tries, the drive is mounted without complaint. I am
not a member of the root group; in fact, my group membership is exactly
the same as the other users. Here's some current data.

$ ls -ld /dev/sde* /media/usbdisk
brw-r----- 1 root disk 8, 64 Feb 20 15:40 /dev/sde
brw-r----- 1 root disk 8, 65 Feb 20 15:40 /dev/sde1
drwxr-xr-x 2 root root 4096 Feb 20 15:40 /media/usbdisk

$ tail -1 /etc/fstab
/dev/sde1 /media/usbdisk vfat pamconsole,exec,noauto,utf8,managed 0 0

# (user user1)
$ mount /media/usbdisk
mount: only root can mount /dev/sde1 on /media/usbdisk

# (user dave)
$ mount /media/usbdisk
$ ls -ld /dev/sde* /media/usbdisk
brw-r----- 1 root disk 8, 64 Feb 20 15:40 /dev/sde
brw-r----- 1 root disk 8, 65 Feb 20 15:40 /dev/sde1
drwxr-xr-x 5 dave dave 16384 Dec 31 1969 /media/usbdisk

Does anyone know where to look for the cause of this difference
--
Dave Close, Compata, Costa Mesa CA "Greed is to the moralists of the
dave@xxxxxxxxxxx, +1 714 434 7359 left what sex is to the moralists
dhclose@xxxxxxxxxxxxxxxxxx of the right." - Cathy Young

--
Dave Close, Compata, Costa Mesa CA "Politics is the business of getting
dave@xxxxxxxxxxx, +1 714 434 7359 power and privilege without
dhclose@xxxxxxxxxxxxxxxxxx possessing merit." - P. J. O'Rourke
.

---

• Prev by Date: Re: Silly questions on FC4 - TELNET Service.
• Next by Date: Re: Question regarding grub.conf and menu.lst
• Previous by thread: Question regarding grub.conf and menu.lst
• Next by thread: pax and RHEL 3 largefile
• Index(es):
  • Date
  • Thread

---

Relevant Pages [Trouble Ticket #190335] AutoReply: freebsd-questions Digest, Vol 246, Issue 26 ... please edit your Subject line so it is more specific ... you need to open a root xterm or even a root shell, ... boot manager is installed for this mirror and I would like to remove it ... was that NFS mount managwed ... (freebsd-questions) Re: UFS Bug: FreeBSD 6.1/6.2/7.0: MOKB-08-11-2006, CVE-2006-5824, MOKB-03 ... They can simply mount a filesystem with any number of SUID ... root binaries on it and have their way with the box. ... They have physical access to the machine. ... (FreeBSD-Security) 2.6 kernel NFS root mount problem ... I'm tying to run 2.6.18 kernel on ARM AT91RM9200DK board with NFS mount ... usb usb1: Product: AT91 OHCI ... Unable to mount root fs via NFS, ... (Linux-Kernel) NFS root mount problem ... I'm tying to run 2.6.18 kernel on ARM AT91RM9200DK board with NFS mount ... usb usb1: Product: AT91 OHCI ... Unable to mount root fs via NFS, ... (Linux-Kernel) Re: nfs help? ... If you use root on client to mount an export, ... NFS, the original ownership is maintained, but numerically: ... (Fedora)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(15)