Andrei POPESCU <andreimpopescu <at> gmail.com> writes: > > On Lu, 26 nov 12, 21:47:36, Amit wrote: > > > > Yes the above would work in most cases but in the case I am dealing > > with, the filesystem is not mounted yet. For example, I plug in a USB > > drive. Before it is mounted, there is a /dev/sd[x] node. I can open > > this node and write anything I want, thereby corrupting the filesystem > > on that device. > > Not unless you are 'root' or member of group 'floppy': > > $ ls -l /dev/sdb1 > brw-rw---T 1 root floppy 8, 17 nov 27 00:14 /dev/sdb1 > > You could just tweak the relevant udev rule to create the device nodes > as root:root or root:disk (like hard drives), since root would be able > to circumvent any protection and 'disk' is almost the same as 'root'. > > Kind regards, > Andrei
Thanks for the reply. Yes, I basically want to avoid even the root user (or process with root privileges) to able to access this. So the kernel has to be replaced in order to disable the "write protect" on that USB port. It is more of a guarantee that there can be no accidental write on that device plugged in to that port. Thanks, Amit -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/loom.20121126t232849-...@post.gmane.org
