mount NTFS as non-root user? -security?

[CMonster]

The following /etc/fstab entry allows me to mount NTFS partition(s) as non-root, is there a major security risk?



/dev/**** /mnt/windows auto ro,noauto,user,uid=***,gid=***,umask=007, 0 0

[pbharris]

hey ya CMonster - is users using the computer can be trusted then no, if there is data on the NTFS that should not fall into anyone elses hands then no, although i would get rid of the /dev/**** and put the /dev/hdX in - that does look like a security risk (i am not positive) in that one can attempt to mount an ntfs partion at any device file.

[CMonster]

pb.... you do know the *** were just for example so that someone else could put in the appropriate values and use it on their systems as well....?

the actual for my system is:



/dev/sda1 /mnt/windows auto ro,noauto,user,uid=500,gid=100,umask=007, 0 0

[nukes]

Well, So long as you have the owner and group secure, then it should be ok, you are blocking anyone else reading the files, but I'm not sure if they could get into the directories and look at the structure. Maybe 227 would be better as you're mounting it read-only anyway, but as long as the accounts on the computer are ok, then there isn't a problem. For example on my system I mount the FAT32 partitions umask=0 as I'm the only one who uses it, and there's no servers/open ports running, and when there is, they're not accessible from outside my network (or by my gateway machine)

[CMonster]

k -thanks for the input

[pbharris]

Quote:

Originally posted by CMonster
pb.... you do know the *** were just for example so that someone else could put in the appropriate values and use it on their systems as well....?

the actual for my system is:



/dev/sda1 /mnt/windows auto ro,noauto,user,uid=500,gid=100,umask=007, 0 0

doh!!.... nope...

[tedroddy666]

you using redhat? in suse its mounted on all users...