View previous topic :: View next topic |
Author |
Message |
pelargos Tux's lil' helper
Joined: 06 Jul 2012 Posts: 129
|
Posted: Mon Sep 24, 2012 5:17 pm Post subject: Ntfs mount error[solved] |
|
|
Hi guys when i go to mount a ntfs filesystem i have this error:
Error mounting: mount exited with exit code 1: helper failed with:
Unprivileged user can not mount NTFS block devices using the external FUSE
library. Either mount the volume as root, or rebuild NTFS-3G with integrated
FUSE support and make it setuid root. Please see more information at
http://tuxera.com/community/ntfs-3g-faq/#unprivileged
.
Help
On my kernel i've enabled fuse (not as module)
and i enabled ntfs and write support.
Also i've installed fuse and ntfs3g.
Last edited by pelargos on Tue Sep 25, 2012 8:34 pm; edited 1 time in total |
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54236 Location: 56N 3W
|
Posted: Mon Sep 24, 2012 5:31 pm Post subject: |
|
|
pelargos,
kernel ntfs is read only, writing is limited to changing the content of existing files without changing the file size.
If mount uses -t ntfs, the kernel ntfs driver will be used.
if mount uses -t ntfs3g then ntfd-3g and FUSE is used.
In either case, only root can mount things buy default.
How are you trying to execute the mount command? _________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
pelargos Tux's lil' helper
Joined: 06 Jul 2012 Posts: 129
|
Posted: Mon Sep 24, 2012 5:50 pm Post subject: |
|
|
NeddySeagoon wrote: | pelargos,
kernel ntfs is read only, writing is limited to changing the content of existing files without changing the file size.
If mount uses -t ntfs, the kernel ntfs driver will be used.
if mount uses -t ntfs3g then ntfd-3g and FUSE is used.
In either case, only root can mount things buy default.
How are you trying to execute the mount command? |
mount /home/user/usb
as root only it works
But i want also to work as regular user. |
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54236 Location: 56N 3W
|
Posted: Mon Sep 24, 2012 6:40 pm Post subject: |
|
|
pelargos http://www.tuxera.com/community/ntfs-3g-faq/#unprivileged wrote: | Why do I get “fusermount: option blkdev is privileged” error?
Unprivileged block device mounts work only if all the below requirements are met:
ntfs-3g is compiled with integrated FUSE support
the ntfs-3g binary is at least version 1.2506
the ntfs-3g binary is set to setuid-root
the user has access right to the volume
the user has access right to the mount point
The root user can make an ntfs-3g binary setuid-root as shown below
chown root $(which ntfs-3g)
chmod 4755 $(which ntfs-3g) In such case the driver will also be able
to fix common FUSE kernel module loading problems
to create the required but sometimes incorrectly removed or missing FUSE device file
Please note that using setuid-root can result unforeseen privilege escalation and its usage is discouraged. Only the absolutely trusted users must be granted such access. Below is an example how this can be done for users in the ntfsuser group to be able to mount any NTFS volume if they have also the needed volume access rights. chown root.ntfsuser $(which ntfs-3g)
chmod 4750 $(which ntfs-3g) The setuid-root ntfs-3g driver applies the principle of least privilege during its lifetime as a safety measure. |
We know that Quote: | ntfs-3g is compiled with integrated FUSE support | is not met as you have FUSE support in the kernel.
See the warning at the end. SUID is horrible. _________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
pelargos Tux's lil' helper
Joined: 06 Jul 2012 Posts: 129
|
Posted: Tue Sep 25, 2012 8:50 am Post subject: |
|
|
NeddySeagoon wrote: | pelargos http://www.tuxera.com/community/ntfs-3g-faq/#unprivileged wrote: | Why do I get “fusermount: option blkdev is privileged” error?
Unprivileged block device mounts work only if all the below requirements are met:
ntfs-3g is compiled with integrated FUSE support
the ntfs-3g binary is at least version 1.2506
the ntfs-3g binary is set to setuid-root
the user has access right to the volume
the user has access right to the mount point
The root user can make an ntfs-3g binary setuid-root as shown below
chown root $(which ntfs-3g)
chmod 4755 $(which ntfs-3g) In such case the driver will also be able
to fix common FUSE kernel module loading problems
to create the required but sometimes incorrectly removed or missing FUSE device file
Please note that using setuid-root can result unforeseen privilege escalation and its usage is discouraged. Only the absolutely trusted users must be granted such access. Below is an example how this can be done for users in the ntfsuser group to be able to mount any NTFS volume if they have also the needed volume access rights. chown root.ntfsuser $(which ntfs-3g)
chmod 4750 $(which ntfs-3g) The setuid-root ntfs-3g driver applies the principle of least privilege during its lifetime as a safety measure. |
We know that Quote: | ntfs-3g is compiled with integrated FUSE support | is not met as you have FUSE support in the kernel.
See the warning at the end. SUID is horrible. |
I don't understand x'( |
|
Back to top |
|
|
Aquous l33t
Joined: 08 Jan 2011 Posts: 700
|
Posted: Tue Sep 25, 2012 9:14 am Post subject: |
|
|
All you have to do is emerge ntfs3g with USE=-external-fuse and run these commands afterwards:
Code: | chown root $(which ntfs-3g)
chmod 4755 $(which ntfs-3g) |
This will enable automounting but it's also less secure. |
|
Back to top |
|
|
pelargos Tux's lil' helper
Joined: 06 Jul 2012 Posts: 129
|
Posted: Tue Sep 25, 2012 3:21 pm Post subject: |
|
|
Aquous wrote: | All you have to do is emerge ntfs3g with USE=-external-fuse and run these commands afterwards:
Code: | chown root $(which ntfs-3g)
chmod 4755 $(which ntfs-3g) |
This will enable automounting but it's also less secure. |
Why is it less secure? |
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54236 Location: 56N 3W
|
Posted: Tue Sep 25, 2012 5:57 pm Post subject: |
|
|
pelargos,
ntfs-3g runs as the root user, regardless of which user actually starts it.
It means that any user can run it and mount any ntfs filesystem read/write. Thy can ten steal your data and potentially run any programes they care to on your system. This is a very bad thing.
sudo is a better security solution as you can have very fine control over who can do what as root. For example, on named trusted individual users would be able to run ntfs-3g.
Security is a trade off with usability, you need to choose where on that scale you want to be. _________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
pelargos Tux's lil' helper
Joined: 06 Jul 2012 Posts: 129
|
Posted: Tue Sep 25, 2012 8:33 pm Post subject: |
|
|
NeddySeagoon wrote: | pelargos,
ntfs-3g runs as the root user, regardless of which user actually starts it.
It means that any user can run it and mount any ntfs filesystem read/write. Thy can ten steal your data and potentially run any programes they care to on your system. This is a very bad thing.
sudo is a better security solution as you can have very fine control over who can do what as root. For example, on named trusted individual users would be able to run ntfs-3g.
Security is a trade off with usability, you need to choose where on that scale you want to be. |
OK man thanks a lot for the info. My head is fine now. |
|
Back to top |
|
|
pelargos Tux's lil' helper
Joined: 06 Jul 2012 Posts: 129
|
Posted: Fri Sep 28, 2012 8:59 am Post subject: |
|
|
NeddySeagoon wrote: | pelargos,
ntfs-3g runs as the root user, regardless of which user actually starts it.
It means that any user can run it and mount any ntfs filesystem read/write. Thy can ten steal your data and potentially run any programes they care to on your system. This is a very bad thing.
sudo is a better security solution as you can have very fine control over who can do what as root. For example, on named trusted individual users would be able to run ntfs-3g.
Security is a trade off with usability, you need to choose where on that scale you want to be. |
hey NeaddySeagoon i have an idea but i want your help. I want to create a launcher that it automatically mounts the ntfs-3g from the commands. Can you help me? |
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54236 Location: 56N 3W
|
Posted: Fri Sep 28, 2012 7:57 pm Post subject: |
|
|
pelargos,
I cannot help very much as I have no way to test. I don't have any NTFS filesystems.
If ntfs-3g is set up properly, automouting should work. Automounting is another feature I don't use as it kills DVD+RW media used like a 4.7G floppy.
Each RW mount causes a superblock write, so you only get about 1000 mounts.
With low cost SD and USB sticks, I don't use DVD+RW as much as I once did. _________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
rsa4046 l33t
Joined: 07 Feb 2005 Posts: 660 Location: The Big H, a bit SSW
|
Posted: Sun Oct 21, 2012 10:34 am Post subject: |
|
|
NeddySeagoon wrote: | We know that Quote: | ntfs-3g is compiled with integrated FUSE support | is not met as you have FUSE support in the kernel. |
Neddy-is the Gentoo wiki page on ntfs-3g, which indicates inclusion of kernel FUSE support to get (auto)mounting by user, then wrong/outdated? Thanks- |
|
Back to top |
|
|
|