Results 1 to 6 of 6

Thread: Permissions question

  1. #1
    Will Honea NNTP User

    Default Permissions question

    I have a strange permissions event occurring here. Running 11.2/KDE4. When
    I plug in a USB drive and try to open it with dolphin I get a pop-up telling
    me I don't have permission to open the device, asking for root pw. If I
    tell it to "Ignore", dophin proceeds to open and I have full rw access to
    the drive. What permission/group setting do I need to modify to get rid of
    that annoying - seemingly meaningless - pop up? Seems silly to ask for root
    pw then give access after the "ignore" selection.

    --
    Will Honea

  2. #2
    Join Date
    Jun 2008
    Location
    The English Lake District. UK - GMT/BST
    Posts
    36,723
    Blog Entries
    20

    Default Re: Permissions question

    Is the drive ntfs?
    Leap 15.1_KDE
    My Articles Was I any help? If yes: Click the star below

  3. #3
    Will Honea NNTP User

    Default Re: Permissions question

    caf4926 wrote:

    >
    > Is the drive ntfs?


    Doesn't matter - I've got some devices with NTFS, a couple with HPFS, and at
    least one with EXT3 formats on them but most are stock FAT32 format. Same
    fire drill.

    --
    Will Honea

  4. #4
    Join Date
    Jun 2008
    Location
    The English Lake District. UK - GMT/BST
    Posts
    36,723
    Blog Entries
    20

    Default Re: Permissions question

    Yes it matters

    On my ntfs partitions I have edited fstab so I Don't get the password request
    Leap 15.1_KDE
    My Articles Was I any help? If yes: Click the star below

  5. #5

    Default Re: Permissions question

    Sounds like a hal/PolicyKit problem. Here is my /usr/share/PolicyKit/policy/org.freedesktop.hal.storage.policy:

    Code:
    <?xml version="1.0" encoding="UTF-8"?>
    <!DOCTYPE policyconfig PUBLIC
     "-//freedesktop//DTD PolicyKit Policy Configuration 1.0//EN"
     "http://www.freedesktop.org/standards/PolicyKit/1.0/policyconfig.dtd">
    
    <!--
    Policy definitions for HAL's drives/media mechanims.
    
    Copyright (c) 2007 David Zeuthen <david@fubar.dk>
    
    HAL is licensed to you under your choice of the the Academic Free
    License Version 2.1, or the GNU General Public License version 2. Some
    individual source files may be under the GPL only. See COPYING for
    details.
    -->
    
    <policyconfig>
    
      <action id="org.freedesktop.hal.storage.mount-fixed">
        <description>Mount file systems from internal drives.</description>
        <message>System policy prevents mounting internal media</message>
        <defaults>
          <allow_inactive>no</allow_inactive>
          <allow_active>auth_admin_keep_always</allow_active>
        </defaults>
      </action>
    
      <action id="org.freedesktop.hal.storage.mount-removable">
        <description>Mount file systems from removable drives.</description>
        <message>System policy prevents mounting removable media</message>
        <defaults>
          <allow_inactive>no</allow_inactive>
          <allow_active>yes</allow_active>
        </defaults>
      </action>
    
      <action id="org.freedesktop.hal.storage.unmount-others">
        <description>Unmount file systems mounted by other users.</description>
        <message>System policy prevents unmounting media mounted by other users</message>
        <defaults>
          <allow_inactive>no</allow_inactive>
          <allow_active>auth_admin_keep_always</allow_active>
        </defaults>
      </action>
    
      <action id="org.freedesktop.hal.storage.eject">
        <description>Eject removable media.</description>
        <message>System policy prevents ejecting removable media</message>
        <defaults>
          <allow_inactive>no</allow_inactive>
          <allow_active>yes</allow_active>
        </defaults>
      </action>
    
      <action id="org.freedesktop.hal.storage.crypto-setup-fixed">
        <description>Set up decryption for encrypted fixed storage devices.</description>
        <message>System policy prevents accessing encrypted fixed media</message>
        <defaults>
          <allow_inactive>no</allow_inactive>
          <allow_active>auth_admin_keep_always</allow_active>
        </defaults>
      </action>
    
      <action id="org.freedesktop.hal.storage.crypto-setup-removable">
        <description>Set up decryption for encrypted removable storage devices.</description>
        <message>System policy prevents accessing encrypted removable media</message>
        <defaults>
          <allow_inactive>no</allow_inactive>
          <allow_active>yes</allow_active>
        </defaults>
      </action>
    
    </policyconfig>
    That should allow you to mount/unmount anything within your active session with no password.

  6. #6
    Will Honea NNTP User

    Default Re: Permissions question

    david b 0 wrote:

    >
    > Sounds like a hal/PolicyKit problem. Here is my
    > /usr/share/PolicyKit/policy/org.freedesktop.hal.storage.policy:
    >
    >
    > Code:
    > --------------------
    > <?xml version="1.0" encoding="UTF-8"?>
    > <!DOCTYPE policyconfig PUBLIC
    > "-//freedesktop//DTD PolicyKit Policy Configuration 1.0//EN"
    > "http://www.freedesktop.org/standards/PolicyKit/1.0/policyconfig.dtd">
    >
    > <!--
    > Policy definitions for HAL's drives/media mechanims.
    >
    > Copyright (c) 2007 David Zeuthen <david@fubar.dk>
    >
    > HAL is licensed to you under your choice of the the Academic Free
    > License Version 2.1, or the GNU General Public License version 2. Some
    > individual source files may be under the GPL only. See COPYING for
    > details.
    > -->
    >
    > <policyconfig>
    >
    > <action id="org.freedesktop.hal.storage.mount-fixed">
    > <description>Mount file systems from internal drives.</description>
    > <message>System policy prevents mounting internal media</message>
    > <defaults>
    > <allow_inactive>no</allow_inactive>
    > <allow_active>auth_admin_keep_always</allow_active>
    > </defaults>
    > </action>
    >
    > <action id="org.freedesktop.hal.storage.mount-removable">
    > <description>Mount file systems from removable drives.</description>
    > <message>System policy prevents mounting removable media</message>
    > <defaults>
    > <allow_inactive>no</allow_inactive>
    > <allow_active>yes</allow_active>
    > </defaults>
    > </action>
    >
    > <action id="org.freedesktop.hal.storage.unmount-others">
    > <description>Unmount file systems mounted by other users.</description>
    > <message>System policy prevents unmounting media mounted by other
    > users</message> <defaults>
    > <allow_inactive>no</allow_inactive>
    > <allow_active>auth_admin_keep_always</allow_active>
    > </defaults>
    > </action>
    >
    > <action id="org.freedesktop.hal.storage.eject">
    > <description>Eject removable media.</description>
    > <message>System policy prevents ejecting removable media</message>
    > <defaults>
    > <allow_inactive>no</allow_inactive>
    > <allow_active>yes</allow_active>
    > </defaults>
    > </action>
    >
    > <action id="org.freedesktop.hal.storage.crypto-setup-fixed">
    > <description>Set up decryption for encrypted fixed storage
    > devices.</description> <message>System policy prevents accessing
    > encrypted fixed media</message> <defaults>
    > <allow_inactive>no</allow_inactive>
    > <allow_active>auth_admin_keep_always</allow_active>
    > </defaults>
    > </action>
    >
    > <action id="org.freedesktop.hal.storage.crypto-setup-removable">
    > <description>Set up decryption for encrypted removable storage
    > devices.</description> <message>System policy prevents accessing
    > encrypted removable media</message> <defaults>
    > <allow_inactive>no</allow_inactive>
    > <allow_active>yes</allow_active>
    > </defaults>
    > </action>
    >
    > </policyconfig>
    >
    > --------------------
    >
    >
    > That should allow you to mount/unmount anything within your active
    > session with no password.


    That solved the immediate problem. The only place I saw this was when
    swapping USB sticks. I'm still looking at implications of the passwordless
    mount with multiple users, some of whom I don't want to be able to have any
    more freedom than necessary.

    --
    Will Honea

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •