You are not logged in.
- Topics: Active | Unanswered
#1 2008-12-20 06:25:37
- anarxi
- Member
- From: schaumburg, IL
- Registered: 2008-12-20
- Posts: 55
- Website
Permissions. trying to allow access only for specified group
Hello, I'm trying to setup my ntfs partitions, so that only users from group wheel could have full access, and others couldn't at all. So far I edited fstab like that:
/dev/sda1 /media/c ntfs-3g groups=10,fmask=0113,dmask=0002,locale=en_PH.utf8 0 0
/dev/sda5 /media/d ntfs-3g groups=10,fmask=0113,dmask=0002,locale=en_PH.utf8 0 0
/dev/sdb1 /media/e ntfs-3g groups=10,fmask=0113,dmask=0002,locale=en_PH.utf8 0 0
and from root typed umask g=rwx /bin/ntfs-3g (I'm not sure for which group I gave access though, root or wheel, so I edited my users that I want to allow, for both groups..).
now users from wheel and root group have full access to these partitions and other users only have read. I need to remove that read access for others, and correctly setup full access for wheel group members only.
thank you
Last edited by anarxi (2008-12-21 05:39:55)
there is now knowledge that is not power
Offline
#2 2008-12-20 15:42:57
- Captain Spaulding
- Member
- Registered: 2006-11-16
- Posts: 115
- Website
Re: Permissions. trying to allow access only for specified group
Change you entry to
/dev/sda1 /media/c ntfs-3g gid=wheel,locale=en_PH.utf8 0 0and you should be fine. Maybe you need to add umask=007, too.
Offline
#3 2008-12-20 15:55:21
- sisco311
- Member
- From: Romania
- Registered: 2008-05-23
- Posts: 112
Re: Permissions. trying to allow access only for specified group
/dev/sda1 /media/c ntfs-3g gid=wheel,fmask=117,dmask=007,locale=en_PH.utf8 0 0dmask=007 ==> set permissions to 770 ,read/write/execute for owner(root) and group(wheel) and none for others (for directories)
fmask=117 ==> set the permissions to 660 read/write for owner ands group and none for others (for files)
you can set the owner and group with uid and gid.
Last edited by sisco311 (2008-12-20 16:06:17)
don't drink unwashed fruit juice.
i never make predictions, especially about the future.
Offline
#4 2008-12-21 00:29:31
- anarxi
- Member
- From: schaumburg, IL
- Registered: 2008-12-20
- Posts: 55
- Website
Re: Permissions. trying to allow access only for specified group
Thank you
/dev/sdb1 /media/e ntfs-3g gid=wheel,fmask=117,dmask=007,locale=en_PH.utf8 0 0
solved
there is now knowledge that is not power
Offline
#5 2008-12-21 05:44:52
- anarxi
- Member
- From: schaumburg, IL
- Registered: 2008-12-20
- Posts: 55
- Website
Re: Permissions. trying to allow access only for specified group
how would that "gid=wheel" would look as a policy? (now I'm trying to do the same with external hard drives, that getas attached frequently). so far I got here:
<?xml version="1.0" encoding="UTF-8"?>
<deviceinfo version="0.2">
<device>
<match key="volume.fstype" string="ntfs">
<match key="@block.storage_device:storage.hotpluggable" bool="true">
<merge key="volume.fstype" type="string">ntfs-3g</merge>
<merge key="volume.policy.mount_filesystem" type="string">ntfs-3g</merge>
<append key="volume.mount.valid_options" type="strlist">locale=</append>
</match>
</match>
</device>
<device>
<match key="volume.fstype" string="ntfs">
<append key="volume.mount.valid_options" type="strlist">dmask=007</append>
<append key="volume.mount.valid_options" type="strlist">fmask=117</append>
</match>
</device>
</deviceinfo>
it loads external usb harddrives with the write premission, now I need to set gid somehow (I do not have ntfs-config, because my PyGtk is too new? I got 2.13 but still configure asks for >=2.6.0)
there is now knowledge that is not power
Offline
#6 2008-12-21 13:02:14
- sisco311
- Member
- From: Romania
- Registered: 2008-05-23
- Posts: 112
Re: Permissions. trying to allow access only for specified group
try:
<?xml version="1.0" encoding="UTF-8"?>
<deviceinfo version="0.2">
<device>
<match key="volume.fstype" string="ntfs">
<match key="@block.storage_device:storage.hotpluggable" bool="true">
<merge key="volume.fstype" type="string">ntfs-3g</merge>
<merge key="volume.policy.mount_filesystem" type="string">ntfs-3g</merge>
<append key="volume.mount.valid_options" type="strlist">locale=</append>
</match>
</match>
</device>
<device>
<match key="volume.fstype" string="ntfs">
<append key="volume.mount.valid_options" type="strlist">dmask=007</append>
<append key="volume.mount.valid_options" type="strlist">fmask=117</append>
<append key="volume.mount.valid_options" type="strlist">gid=wheel</append>
</match>
</device>
</deviceinfo>
Last edited by sisco311 (2008-12-21 13:02:51)
don't drink unwashed fruit juice.
i never make predictions, especially about the future.
Offline
#7 2008-12-21 20:48:48
- anarxi
- Member
- From: schaumburg, IL
- Registered: 2008-12-20
- Posts: 55
- Website
Re: Permissions. trying to allow access only for specified group
I tried that myself.. experimenting.. but for some reason any usser has full access to usb connected hard drive 
I "combined" everything into one "rule"?
<?xml version="1.0" encoding="UTF-8"?>
<deviceinfo version="0.2">
<device>
<match key="volume.fstype" string="ntfs">
<match key="@block.storage_device:storage.hotpluggable" bool="true">
<merge key="volume.fstype" type="string">ntfs-3g</merge>
<merge key="volume.policy.mount_filesystem" type="string">ntfs-3g</merge>
<append key="volume.mount.valid_options" type="strlist">gid=wheel</append>
<append key="volume.mount.valid_options" type="strlist">dmask=007</append>
<append key="volume.mount.valid_options" type="strlist">fmask=117</append>
<append key="volume.mount.valid_options" type="strlist">locale=</append>
</match>
</match>
</device>
</deviceinfo>
Last edited by anarxi (2008-12-21 21:30:33)
there is now knowledge that is not power
Offline