Sudo, without alot of work (there is stuff you can do but I dont think sudo is really thwe answer you need), is not by any means a security feature in my opinion. Its good for accounting purposes so you can see who did what, but any user you dont trust shouldnt be given sudo rights. There are a million ways to spawn a root shell with sudo and no one knows them all. The mount command is SUID root by default in linux. This is so non-root users can mount stuff, based on the entries in /etc/fstab like (user,exec,owner) etc. Removing the SUID bit will prevent any non-root users from running mount, and a 'sudo mount' command would cause the filesystem to be mounted as root and inherit roots perms (unless specified otherwise), basically making it a ro system to the user. The reason Gore thinks the CD will mount automagically is because he is a Suse whore , Suse is the only distro that includes subfs/submount by default, if you build a vanilla kernel on suse you'll see it bitch about not having its subfs support. You probably want to: A. Just add the appropriate entries in /etc/fstab, put the suid back on mount, and ditch sudo, B. Use something like subfs or autofs which are little kernel modules that will do the mounting for you from root land, and ditch sudo.

-Maestr0