Debian Configuration :: User Access To A USB Stick?
Oct 30, 2010
This is a perennial problem with Linux. I am just not comfortable moving a lot of casual files around as root. How can I have user access to a USB stick? I've done my Google searches and tried several methods, some of which work temporarily but not permanently. At the moment, I have this line in my /etc/fstab: /dev/sdd /media/usb_flash ntfs noauto,users,rw,umask=0 0 0
As with other methods, this worked last week but not now.
All I want to do is insert a USB stick, transfer some files and remove the stick. I want to do this as a user. This should be simple. What is the trick?
It looks like my web/ftp server has been hacked but I'm not sure how. I logged in tonight and found I had new mail. I read it and found some e-mails that had failed to send because I don't have mail setup (luckily). The e-mails were trying to send my user name and password to the e-mail address lostsoul2k@ymail.comI've no idea where to start, I use SSH, FTP now and then and it hosts a Wordpress site. The FTP users do not have access via SSH, only my user ID. However, the e-mails also contained another user ID that only has FTP access to the server.I've looked through the logs for rkhunter but it doesn't look like it found anything.
2 of us have been googling all morning trying to find out how we can restrict ftp logins to their own home directories only but nothing we've found so far has worked. We've tweaked sshd_config so that they default to their home directory but they are able to navigate up/across/down to everything. This is a "straight-out-of-the-box" debian 5.0.5 Netinst. Just a basic system with Apache/MySql/PHP/SSH and no desktop.
I upgraded a Guruplug Display machine running Lenny to Squeeze. It's running Linux on a MicroSD device, running an ARM-cpu.
# uname -a Linux gplugD 2.6.29 #1 Wed Feb 16 17:59:04 IST 2011 armv5tejl GNU/Linux yeri@gplugD ~ $ cat /etc/debian_version 6.0.1
However, after rebooting, every non root user was unable to access anything related to the net.This means, DHCP failed to auto start, ntp is giving errors, etc
# ntpq -p localhost: timed out, nothing received ***Request timed out
daemon.log:
Mar 27 06:07:44 localhost ntpd[1478]: ./../lib/isc/unix/ifiter_ioctl.c:348: unexpected error: Mar 27 06:07:44 localhost ntpd[1478]: making interface scan socket: Permission denied Mar 27 06:07:44 localhost ntpd[1478]: Too many errors. Shutting up.
As root:
gplugD ~ # ping 85.12.6.171 -c 1 PING 85.12.6.171 (85.12.6.171) 56(84) bytes of data. 64 bytes from 85.12.6.171: icmp_req=1 ttl=58 time=42.1 ms
My usb stick with Debian only loads from the usb hub it's crazy. I just tried putting the usb stick onto a usb3 port in my desktop and also on a usb2 port even the one where the usb hub is connected to and it wont' load!. Same initramfs prompt happens as when connected on the laptop usb ports.
the usb hub has usb2 speeds so is not that the stick is under usb1.1 emulation.
I recently switched back to Debian after getting fed up with Ubuntu. The one feature that I haven't been able to get back since the switch is Wake on LAN.If I turn on the computer and watch tcpdump, I can see the packets hitting my machine. I don't think it's a router configuration issue.If I shut down from windows, WOL works.Another sign that it's not a networking or BIOS thing.Here's some stuff I've tried:When I boot up in linux, if I run ethtool eth0, it tells me that wake is set to g (which every guide I've read says is correct).Just in case, I added "post-up /usr/sbin/ethtool -s $IFACE wol g" to /etc/network/interfaces (as shown here: ewtopic.php?f=5&t=42049&p=244736&hilit=wakeonlan#p244736). Also added same thing for post-down.
In /etc/init.d/halt, I changed NETDOWN to no (also from previous guide) to keep my eth card from being shut down.Also changed /etc/init.d/networking to exclude eth0 (as documented in Added "pre-down false" to /etc/network/interfaces.. trepid+wol), to keep eth0 from being shut off.Anyway, I'm guessing that either there's another script somewhere shutting off eth0 or I'm completely wrong in assuming that's the problem. I've been googling this problem for a couple weeks now and I'm totally out of ideas.
I have a USB stick, formatted as FAT32 and I assumed that everybody would be able to read from and write to it. However, I find that if more than one person is logged on to the machine (logged on locally, with "Switch User"), then only one of the users is allowed to write to the stick, and the other users are only allowed to read from it. Is that normal?
Here's the scenario: person A logs into the machine, is in the middle of something but gets called away and the screensaver kicks in. The screen is now locked. Person B comes to the machine to quickly copy a file onto a USB stick, doesn't know person A's password so does a "Switch User" and logs in as themselves. They plug in the stick, can read from it, but can't write to the stick at all. Permission denied.
By doing a "ls -l /media", person B can see that the stick is mounted but is owned by personA with permissions drwxr-xr-x . So only person A can write to the stick. I haven't done extensive testing but it seems to be the person who logged on first who gets to own the stick. It's certainly repeatable as described above. And it's really annoying, because unless person B knows the root password, he can't write to the stick. As a real last resort person B could reboot the computer but he doesn't know whether person A has any important stuff open or not.
I am using Squessze and Gnome. When I try to use the gui System>Administration>Network or Users and Groups I get the error The configuration could not be loaded. You are not allowed to access the system configuration.Everything was working before. I read around a bit. In some cases,it was caused by mismatching group and password files after using the gui. I do not know how to check if they are matching. Of course I do not know for sure that is the problem in my case.
usb devices, such as external hdd, memory stick and mp3 player, when I connect them to USB, they show up in Nautilus, but when I click on them, Nautilus is unable to mount them and returns the following error: Unable to mount location Error mounting: mount exited with exit code 1: helper failed with:mount: wrong fs type, bad option, bad superblock on /dev/sdc1, missing codepage or helper program, or other error in some cases useful info is found in syslog - try dmesg | tail or so
I keep receiving the error message in the title above whenry to enterebmin.abc.com/webmin. I'm on Ubuntu 9.10. Other errors I'll receive are "You do not have access to any Webmin modules". Wondering if anyone knew what settings our permissions on files I could change to avoid these error
I just installed Debian Jessie (3.16.0-4-amd64) on a desktop box I intend to use as a server in our home office. During installation I included the web server and SSH server options. I have a user account, 'mitchell' set up in addition to root. Everything is working great except that I am unable to log in via SSH from other machines, such as a Windows desktop also on the office LAN (using PuTTY). From the PuTTY terminal it looks like the user name is accepted because the password is requested, but after entering the password it says "Access denied".
Back on the Debian box in I see:
Code: Select allNov 26 14:12:02 DebianDevP6TSE sshd[2278]: Invalid user mitchell from 192.168.1.96 Nov 26 14:12:02 DebianDevP6TSE sshd[2278]: input_userauth_request: invalid user mitchell [preauth] Nov 26 14:12:07 DebianDevP6TSE sshd[2278]: pam_unix(sshd:auth): check pass; user unknown Nov 26 14:12:07 DebianDevP6TSE sshd[2278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=rmbiserv.attlocal.net Nov 26 14:12:10 DebianDevP6TSE sshd[2278]: Failed password for invalid user mitchell from 192.168.1.96 port 60010 ssh2
So I am guessing I need to set up either the SSHD server, or maybe something in PAM, to authorized users for SSH access?
As a note, "mitchell" is the user name I use to log on to Debian, and I am entering the same user name and password when trying to log in via SSH.
If I try to log in via SSH as "root" I get the following in the log:
Code: Select allNov 26 14:17:01 DebianDevP6TSE CRON[2329]: pam_unix(cron:session): session opened for user root by (uid=0) Nov 26 14:17:02 DebianDevP6TSE CRON[2329]: pam_unix(cron:session): session closed for user root Nov 26 14:29:59 DebianDevP6TSE sshd[2383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=rmbiserv.attlocal.net user=root Nov 26 14:30:01 DebianDevP6TSE sshd[2383]: Failed password for root from 192.168.1.96 port 60132 ssh2
we have moved and in the new apartment there's a connection with no external IP. Can I somehow access ssh from outside? There's absolutely no chance of granting a port from the ISP's side.
I want to refuse access for some users to usb pen and audio. In previous releases (debian, ubuntu , debian-based ..) , it is enough to remove the user from the group.
that is in /etc/group audio:x:29:bela plugdev:x:46:bela,geol
with theses lines : bela can heard sound, but not geol, for bela and geol the usb pen is automatically mounted. But not for nobody else. It is NOT the case in the new release, I mean, even if I remove a user from the plugdev group, the usb pen is automatically mounted for that user.
I don't exactly know what happened but for some reason only the main user has access now to the networkmanager and is able to connect to internet. If I switch to another user, the networkmanager reports no connectivity and the PCMCIA card dies. Does anyone know what to do? It seems like an access feature, related to permissions or something.
I checked but the user is added to the netdev group...
I'm running sid, reasonably updated. I decided to add a samba share. I installed samba (2:3.4.8~dfsg-2), samba-tools, smbclient, smbfs, & samba-client. I did a "/etc/init.d/samba start" and even rebooted. But when I try to add a samba password for my regular user I can't.
# smbpasswd -a praxis bash: smbpasswd: command not found I did a "locate smbpasswd" but I'm only seeing:
I have a windows based Domain Name Server (DNS) and I have a debian pc connecting to this network, obtaining an ip address via a DHCP server. I can ping any machine on the network using the ip address however I would like to be able to ping other machines on the network using their host names. For example I would like to be able to type... ping machine1HostName ... instead of ... ping 00.00.00.00 To do this I realise I need to tell debian to access the windows DNS but how can I do this?
I have a system running with few users and servers (apache/mysql/postfix). After extracting one tar archive in '/home' none of my users are being able to access their home directory. Even other system users (like www-data/mysql) are also not being able to access any directory. Only root can access the system. I have checked file permissions, many files/directories are set to 777 rest are 755.
After fossicking around I can not find anything around that I can invoke in a terminal to configure settings in network-manager. The applet(?) on the task bar doesn't ask for a login, so options are grey/grayed out. The "program" in the applications menu is similarly grey/grayed out.
If it was a once off, then I suspect that it would be simple as login as root to start X, but I have a series of config files to edited each time of their initial use. also, there is the ongoing problem of vpn target switching.
woops; wheezy with xfce4 and everything is uptodate.
Currently, a user is able to log into multiple terminals simultaneously, creating a copy of their roaming profile on each, and potentially causing problems if the instances are logged out in the wrong order. Is there any way to prevent this, so that if a user has logged in on a machine and not logged out (and perhaps some timeout has not yet expired) then their login attempts on another machine will be rejected.
I have two machines running SQUEEZE, both installed and configured within the same week (not simultaneously). Both get the users info from a NIS server. In one of the machines (named "corona"), users cannot login, neither locally nor by ssh, in the other one ("xxlager") there is no problem. Both mount the users home directories by NFS. I have not found much useful info in the web. /etc/passwd, /etc/group/, /etc/shadow, are equally configured. The only difference I have found is when I use getent. Using "getent passwd isaenz" on xxlager yields:
isaenz:x:1001:1001:User Name,,,:/home/isaenz:/bin/tcsh but on corona the result is isaenz:x:1001:1001:User Name,,,:/home/isaenz: so the shell info is empty. Checking /var/log/auth.log I see a message saying: "User isaenz not allowed because shell does not exist"
But "ypmatch isaenz passwd" returns complete information for isaenz, both on xxlager and corona.
on my netbook I've tried to make possible for my user to shutdown without needing a password. battery could run low when I'm not in front of it. Editing sudoers has allowed my user to shutdown the system, but Gnome still prompts me for the root password whenever root is logged in too. That's usually the case, because to avoid entering the root password multiple times whenever I need elevated privileges and not wanting to cache the root password, I keep a Root Terminal always open.
I'm trying to control access to different services on an Debian server using /etc/group. So that a user I create for FTP usage doesn't fill up my server with IMAP folders or samba garbage.
Services like proftpd have:
AllowGroup ftpgroup
sshd have
AllowGroups sshgroup
And samba have
valid users = @smbgroup
But I can't find the correct option in Dovecot (/etc/dovecot/dovecot.conf) Do anyone have the magic option or a workaround thats doesn't envolve maintaining seperate user databases and password?
I've installed Debian on a Sun Ultra 450 Enterprise system using the net install version, so I know that my network is working correctly. However, now that Debian is installed and I bring up Gnome, I have no network access. I've set eth0 to DHCP, and have pointed it to my DNS server, but it never gets any information from the DNS server.
I've looked through /etc/network/interfaces, which looks like this: # This file describes the network interfaces available on your system and how to activate them. For more information, see interfaces(5). # The loopback network interface auto lo iface lo inet loopback # The primary network interface allow-hotplug eth0 #NetworkManager#iface eth0 inet dhcp /etc/resolv.conf contains: nameserver 192.168.0.1 which is correct.
I've run /etc/init.d/networking stop /etc/init.d/networking start
So far, nothing works. Why would the Debian network install disk work, but not be smart enough to set my network correctly from the start once I'm actually running Linux? Also, how do I get the network running in Gnome?
I have recently installed Debian 504 AMD64, when I try to access "System" --> "Administration" --> "Users and groups" logged in as root, I get the following message: "The configuration could not be loaded. You are not allowed to access the system configuration." The system does not even ask for a password and the result is the same if I log in as a normal user.
I have installed from a single ISO DVD downloaded from the internet and read the DVDs of my previous Debian distro to install packages not included on DVD 1 of Debian 504 although I do not think this unusual approach can have any effect on the installation. I suspect I'll have to boot in single user mode but I have never done any troubleshooting at the command line. (/etc/passwd and /etc shadow look OK).
