Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!samsung!zaphod.mps.ohio-state.edu!pacific.mps.ohio-state.edu!ohstpy!miavx1!dastrout From: dastrout@miavx1.acs.muohio.edu (root@next1) Newsgroups: comp.sys.next Subject: Re: More questions Message-ID: <2102.26bf0332@miavx1.acs.muohio.edu> Date: 7 Aug 90 23:06:41 GMT References: <5984@milton.u.washington.edu> Lines: 48 In article <5984@milton.u.washington.edu>, cyliao@hardy.u.washington.edu (Chun-Yao Liao) writes: > Hi folks, this is me again, the one who "upgraded" from a "not-so-experienced" > Unix user to "Beginner-SysAdm." So here are some new dumb questions to > bother you guys again. > > 1. When mount an OD on multiple disk system, ALL files on the OD > belong to the person who mounted the OD. Does this mean if some one takes > my system disk and mount it in his/her/public cube, he or she can perform > ALL kind operations to the files on my OD even like change root privilege > of my files? Yup. Keep your system disk under lock & key. The big danger is not changeing your files, but SUID files that allow the bad guy to become root at will. Bad magic. > 2. If I build my startup on a harddisk, then someone comes with his/her own > system disk (OD) and boot from the monitor with bod. Is he or she going > to have ALL the access of files on my harddisk as if he/she mount my > harddisk under his/her home directory on his/her OD? Yup. Set your hardware passwd. Capital P in the monitor. Then set your options with small p in the monitor. Set boot command to bsd. Then it will look for a Hard drive, and puke when it can't find it. Thus, only the person with the passwd can boot off of optical. Also see NeXTAnswers about how to disable power off if you run it all night. > > if both are true, isn't it very dangerous to let anyone use my cube? (well, > I don't have a harddisk yet, but I am plan to. A single optical drive system > is not so usable...) > > so is there anyway to give the permission for excecute mount and unmount only > to certain user? I read it in the user ref manual that sysadm can set it so > users cannot eject disk. Does that mean users can mount disk but not to > unmount disk? Not as far as I know. UNIX only checks for owner and group. If you want, you could make mount & umount doable only by root, but I'm not sure what that gains you, and also, the system might hang on auto-mount. I've never tried it. Not being able to eject means exactaly that. You can't use ej to spit it out. As you have no scsi drive to boot from, that might be good. Better is to take the OD home at nite. > > mmm... I am getting more and more questions as I read through all these manuals > Thanx a lot to whoever can answer these questions. -- Dave Strout dastrout@miavx1.acs.muohio.edu dastrout%miavx1.bitnet@pucc.princeton.edu root@next1.acs.muohio.edu 513-523-8245