Re: Mounting PC Floppy Disks - Summary

From: Paul Hoyt Nelson (pnelson@renegade.lerc.nasa.gov)
Date: Thu Mar 26 1992 - 15:28:07 CST


Bryan Emery writes:
>The final type of response was to write simple shell programs to do
>this. The simplest, most concise response follows:
>
>
>From simon%gpsemi.COM Tue Mar 24 08:28:20 1992
>Date: Tue, 24 Mar 92 13:53:24 GMT
>From: simon%gpsemi.COM (Simon Booth x8125 System Mangler ! - Unix)
>To: nmsu.edu!bemery%moon.gpsemi.COM
>Subject: Re: Mounting PC Floppy Disks - non-superuser account
>
>Bryan,
> I allow my users to do the same thing as follows:
> First write a script to mount and unmount the floppy,
> These are very simple :
>The mount script ( Call it for eg mountfd ) :
>
> #! /bin/csh -b
> #
> # Set UID root script
> #
> # Mount the Floppy disk as a pc disk
> #
> etc/mount -t pcfs /dev/fd0 /pc
>
>(The -b is importanmt in the first line )
>
>The unmount script ( eg umountfd )
> #! /bin/csh -b
> #
> # Set UID root script
> #
> # UnMount the Floppy disk as a pc disk
> #
> /etc/umount /pc
> eject
>
>Next create a directory in the root (/) called 'pc' . This is the mount
>point
>
>Finaly change the ownership of the files to root, and change the protection
>so that all users can run them, and so they are set uid to root scripts:
> chmod 4755 mountfd umountfd
>
>The script can thus be run by anyone... When they run they run as root,
>therefore allowing any user to mount a floppy. The files will be available
>in /pc ( This can be changed.. Just change the scripts ).
>
>To add it into the menus you will have to hack the
>/usr/openwin/lib/openwin-menu
>file, and add the command.
>
>Good luck !
>
> Simon Booth ( GPS, Swindon, England )
>

        This very thread was discussed just a couple of weeks ago.
You might as well just give all you users the root password. It would
actually be safer. That way if you system was breached from the
outside at least a gate would not exist for becoming root. It is
_trivial_ to become root on a system with this type of script
installed.
        
        Absolutely TRIVIAL..................
        

Paul "I sure am sick of this idiocy"

-- 
------------------------------------------------------------------------------
Paul Hoyt Nelson                    |                         RMS Technologies
Sun Systems Administrator           |               NASA Lewis Research Center
NASA Lewis Research Center          |                         Mail Stop  142-1
pnelson@lerc.nasa.gov               |                      21000 Brookpark Rd. 
(216) 433 5121                      |                      Cleveland, OH 44135
------------------------------------------------------------------------------



This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:06:40 CDT