USB mass storage devices are mounted with unsafe permissions

Hi there
Which filesystem do you use on your external media to test this issue?, which version of Ubuntu are you using?
about the executable property, vfat and ntfs probably won't ever support unix permissions, so it always have the "x" permission, about the read and execute by the group and others, here i test with an ipod and usb external HD, both USB, and mount with permission "700" for the files and directories, not 755 like in your case.

Thanks in advance.

I'm running Kubuntu 7.10. My external HD has a single vfat partition and I assume that the flash drive is also vfat.

So in the case of those file systems which don't support unix permissions, isn't there a way to configure the default file permissions attributed to them? After all, the executable permission has to be attributed somewhere. Moreover, they may not support the unix file permissions but that doesn't make the hability to run any external file as executable any less of a security problem.

I've just noticed that this file permission problem affects more than USB mass storage devices, as I've found out that even CD-ROMs are mounted with 777 permissions. Not good.

Isn't there anything that can be done about this? Like a virtual change of permissions?

This issue keeps on getting stranger, now that I noticed that ubuntu, through GNOME (which is known for it's very restricted configurability), offers the ability to not only setup the removable drive permissions but also all mount options, all that through a GUI application.

So, what gives?

This bug is marked as incomplete. What else is needed to tackle this problem?

Since it's been a very long time since any additional info was added to this bug, I'm just checking to see if this is still an issue, and find out what additional work should be done on this bug.

It's still an issue. I've upgraded to kubuntu 8.10 and the default file permissions are still (rwxr-xr-x).

This bug/wishlist report will expire in 5 days - if you wish to see it implemented, mark its status as "New".

It's still there

Status fixed. Thanks for the heads up, Savvas.

Can this default be changed for FAT filesystems, or are we limited by the lack of execute bits there?

I've just upgraded to kubuntu 9.04 and this bug still persists. Isn't it possible to at least hard-code the default permissions on mounted mass storage devices?

This bug can be considered a duplicate of bug #14335, because there is a more established discussion about 2 implications of this issue (nautilus wanting to execute text files on ntfs/fat drives, unsafe permissions...).
Please head to that bug for further discussion and for a workaround (see one of my comments quoting a comment from another duplicate bug - bug 60722)