| 1 |
Awesome! |
| 2 |
|
| 3 |
I am glad to hear, that I could help. :) |
| 4 |
|
| 5 |
-Ramon |
| 6 |
|
| 7 |
On 01/04/2021 13:28, William Kenworthy wrote: |
| 8 |
> In the end it was easy: created a polkit rule enabling users in the |
| 9 |
> wheel group to not use a password. |
| 10 |
> |
| 11 |
> rattus ~ # cat /etc/polkit-1/rules.d/55-disks.rules |
| 12 |
> |
| 13 |
> // Allow any user in the 'wheel' group to mount a disk |
| 14 |
> // without entering a password. |
| 15 |
> |
| 16 |
> polkit.addRule(function(action, subject) { |
| 17 |
> if (action.id == "org.freedesktop.udisks2.filesystem-mount-system" && |
| 18 |
> subject.isInGroup("wheel")) |
| 19 |
{ |
| 20 |
> return polkit.Result.YES; |
| 21 |
> } |
| 22 |
> }); |
| 23 |
> rattus ~ # |
| 24 |
> |
| 25 |
> Thanks for the polkit hint. |
| 26 |
> |
| 27 |
> BillK |
| 28 |
> |
| 29 |
> |
| 30 |
> On 1/4/21 6:08 pm, William Kenworthy wrote: |
| 31 |
>> Hi, I only have a default polkit rule - nothing about usb. |
| 32 |
>> |
| 33 |
>> Just noticed the mount dialog box contains: |
| 34 |
>> |
| 35 |
>> Action: org.freedesktop.udisks2.filesystem-mount-system |
| 36 |
>> |
| 37 |
>> Vendor: The Udsks Project" |
| 38 |
>> |
| 39 |
>> I have found some documents on the web, but nothing yet on how to deal |
| 40 |
>> with this issue. |
| 41 |
>> |
| 42 |
>> BillK |
| 43 |
>> |
| 44 |
>> |
| 45 |
>> On 1/4/21 3:21 pm, Ramon Fischer wrote: |
| 46 |
>>> Addendum: |
| 47 |
>>> |
| 48 |
>>> I forgot to answer your other question: |
| 49 |
>>> |
| 50 |
>>> Maybe you also have set some rules in "/etc/polkit/rules.d/"[1], which |
| 51 |
>>> allows your unprivileged user to mount USB drives and SD cards without |
| 52 |
>>> any password. |
| 53 |
>>> |
| 54 |
>>> -Ramon |
| 55 |
>>> |
| 56 |
>>> [1] https://wiki.gentoo.org/wiki/Polkit |
| 57 |
>>> |
| 58 |
>>> On 01/04/2021 09:13, Ramon Fischer wrote: |
| 59 |
>>>> Hello BillK, |
| 60 |
>>>> |
| 61 |
>>>> I guess, that you are looking for the mount option "user": |
| 62 |
>>>> |
| 63 |
>>>> /etc/fstab |
| 64 |
>>>> |
| 65 |
>>>> /dev/sdx /<some_path> ext4 noauto,user,relatime |
| 66 |
>>>> 0 2 |
| 67 |
>>>> |
| 68 |
>>>> In this way, I can mount "/dev/sdx" with an unprivileged user: |
| 69 |
>>>> |
| 70 |
>>>> $ mount /<some_path> |
| 71 |
>>>> |
| 72 |
>>>> See also "man 8 mount" ("Non-superuser mounts"). |
| 73 |
>>>> |
| 74 |
>>>> I am not sure, if this also works with "automount" from |
| 75 |
>>>> "net-fs/autofs", if this is what you meant with "automounter". |
| 76 |
>>>> |
| 77 |
>>>> -Ramon |
| 78 |
>>>> |
| 79 |
>>>> On 01/04/2021 06:51, William Kenworthy wrote: |
| 80 |
>>>>> Hi, |
| 81 |
>>>>> |
| 82 |
>>>>> I use a sata drive caddy with 2Tb hard disks for offline backups. |
| 83 |
>>>>> Almost everytime (within sessions are ok?) it asks for a password |
| 84 |
>>>>> before |
| 85 |
>>>>> automounting. This is just annoying and has no security benefit in my |
| 86 |
>>>>> environment (why just hard disks when USB keys and SD cards don't ask |
| 87 |
>>>>> for one?). |
| 88 |
>>>>> |
| 89 |
>>>>> So, how can I disable the automounter asking for a password either in |
| 90 |
>>>>> general, or just for my backup drives? |
| 91 |
>>>>> |
| 92 |
>>>>> BillK |
| 93 |
>>>>> |
| 94 |
>>>>> |
| 95 |
>>>>> |
| 96 |
|
| 97 |
-- |
| 98 |
GPG public key: 5983 98DA 5F4D A464 38FD CF87 155B E264 13E6 99BF |
Archives