chown jtwdyp: /dev/hda8 /dev/hda9 /dev/hda10 [fstab: owner, noauto]

Tue Mar 13 22:34:36 UTC 2007

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

It would appear that on Mar 13, Daniel Pittman did say:

> "Joe(theWordy)Philbrook" <jtwdyp at ttlc.net> writes:
> 
> > chown jtwdyp: /dev/hda8 /dev/hda9 /dev/hda10
> > Is this way I'm supposed to give these partitions to user jtwdyp ???
> 
> Not in a world with udev, no.
> 

Oh... "udev" Shoulda guessed that it would have something to do with it.

> > /etc/fstab contains:
> > /dev/hda10 ext2 /home/jtwdyp/hda10 ext2 defaults,owner,noauto 0 2
<<snip>>
> 
> Are you sure it wouldn't be better to permit jtwdyp to mount and unmount
> them as root, using sudo, without a password?  (or even with one?)
> 
I wouldn't give sudo to a user account I routinely use, any more than
I'd routinely run as root.  I'm not in complete agreement with the
idea that sudo is better than su -c... But the one thing I did agree with
was that if the hacker has to guess the user name as well as the password
it's harder than cracking an enabled root password because they already
know the username...  But if the account is routinely used it's likely
that I'll forget to check for shoulder surfers sometime when I'm logging
in. Thus making it less secure than the root account would have been.
Thus:
I won't give sudo privileges to any username I use for routine activity.
first I gotta su to a suduer account, THEN I can sudo... And doing that
every time I want to mount or unmount one of these partitions would be
too much like work! <grin>

> > That is it works until the next reboot... Or maybe it's during the
> > shut down. 
<<snip>>
> 
> Yes: you need to modify the udev rules, which are invoked during the
> hardware discovery phase of boot, so they give the ownership you expect
> to those devices.
> 
> You can learn more about this in the udev documentation, found on your
> Ubuntu system.  
> 
> Once you have updated the rules don't forget to update your initramfs
> images so that the rules in there are also up to date.

Thanks for the clues Daniel, but it sounds like more work than sticking
the chown command in a script like Michael hinted at. A quick look at man
udev shows me that it should be possible, once I find the time to study
udev enough. Life is too short! So since it seams like I only have to
reset this when I reboot I'm thinking I do have enough time to script it...

> 
> Alternately you can move away from udev and use a static /dev directory,
> but I couldn't recommend that on Ubuntu; you would have non-trivial work
> keeping that running smoothly.

Somehow I don't see "me" setting up a static /dev that works at all,
never mind runs smoothly.

   #############################################################
   ##_if_you'd_prefer_an_clearsigned_".asc"_text_file_of_this_##
   ##message_as_an_mime_encoded_attachment,just_ask_me_while__##
   ##it's_STILL_IN_my_outbox_folder_._._._=+=+=+=+=+=+=+=+;-)_##
   #gpg sig for: Joe (theWordy) Philbrook DSA key ID 0x6C2163DE#
   # You can find my public gpg key at http://pgpkeys.mit.edu/ #
   #############################################################
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFF9ybTRZ/61mwhY94RAhPFAJ99IWB3RmNR1mMZ4eA0/+DtOxrnKACeKT9M
BPFs4/3Xqe8qWOZlX5yVz8I=
=d/5S
-----END PGP SIGNATURE-----
-- 
|   ---   ___
|   <0>   <->	   Joe (theWordy) Philbrook
|	^		J(tWdy)P
|    ~\___/~	     <<jtwdyp at ttlc.net>>