Hi DU Admins
It seems there are 4 ways to let users use the floppy drive and
mtools under DU 4.0[bc]:
Use sudo. The problem with this is that our user areas are
NFS mounted from all over the place and root on the local
workstation can't write into NFS mounted user areas.
Make the mtools executables suid root. This suffers from the
same problem as sudo and has security implications.
Create a special group for this then change the group owner
of /dev/rfd?c to this group and change the permissions
to 660. The problem with this is that users who want to use
the floppy have to apply to be added to the group and when they
leave they have to be removed from the group. In other words
more work for the Sys Admin.
Change the permissions on /dev/rfd?c to 666. This is the
simplest and works fine but I'm worried that this might
create a security problem?
Anyone got any thoughts on this and especially on the
security implications of setting world read and write
permission on the floppy device.
Thanks
Ian
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
_/ Ian Mortimer _/
_/ mortimer_at_physics.uq.edu.au ,-_|\ Department of Physics _/
_/ Tel: +61 7 3365 3436 / *\ University of Queensland _/
_/ Fax: +61 7 3365 1242 \_,-._/ St. Lucia, Brisbane _/
_/ v Queensland, Australia 4072 _/
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
Disclaimer: Speaking only for myself.
Received on Fri Nov 28 1997 - 04:52:34 NZDT