untrusted user mount usb, followed handbook, still no luck

Roland Smith rsmith at xs4all.nl
Tue Apr 1 16:52:02 UTC 2014

On Mon, Mar 31, 2014 at 09:59:17PM -0700, jungleboogie0 wrote:
> Hi Roland,
> >Around 2010 I wrote the manual pages devfs.conf(5) and devfs.rules(5).
> they are still up to date. If something is missing or unclear, please
> submit a
> PR.
> http://www.freebsd.org/cgi/man.cgi?query=devfs.rules&sektion=5&n=1
> Example shows: [localrules=10]
> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/usb-disks.html
> This example shows:[localrules=5]
> What's the difference between the two?

Each devfs mountpoint has a ruleset number associated with them. That is the
number shown in /etc/devfs.rules and activated in /etc/rc.conf.

Since the default rulesets in /etc/defaults/devfs.rules have numbers 1 -- 4,
there is no overlap with numbers >4. So in this case there is no difference.

IIRC, if you were to re-use an existing ruleset number, the rulesets are
effectively merged. Since the sets 1 -- 4 are pretty restrictive, don't do
that! E.g. ruleset 4 is meant for use in jails, exposing only a minimum of

Generally; use an unique ruleset number for each ruleset. You can use the
include mechanism to incorporate other rulesets if you want to.

R.F.Smith                                   http://rsmith.home.xs4all.nl/
[plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated]
pgp: 5753 3324 1661 B0FE 8D93  FCED 40F6 D5DC A38A 33E0 (keyID: A38A33E0)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 834 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20140401/bd84ef88/attachment.sig>

More information about the freebsd-questions mailing list