Managing read-only mount volumes (in Linux)

Saul note: Although this post idea, writings and its final formatting are my own work, I am disclosing having used generative AI (Claude 3.5) to aid with some of the text/code generation for it. The AI output has been used as a writing aid and it does not constitute the final or main form of the article.

Command Syntax

The primary command to create a read-only mount is:

sudo mount --bind -o ro /folder/folder2 /location/location2

Steps:

Preparation
- Ensure the destination directory exists:
sudo mkdir -p /location/location2
Bind Mount with Read-Only Option
- Use the mount --bind command
- The -o ro flag specifically sets the mount as read-only
- Replace /folder/folder2 with your source directory
- Replace /location/location2 with your destination mount point

Permanent Mount (Optional)

To make this mount persistent across reboots, add an entry to /etc/fstab:

/folder/folder2 /location/location2 none bind,ro 0.

To verify:

To confirm the read-only status:

mount | grep /location/location2

Important Considerations

Root privileges are required
Destination directory must exist before mounting
Read-only mounts prevent any write operations

Unmounting

To remove the mount:

sudo umount /location/location2

Read-Only mount permissions considerations:

The read-only mount is enforced at the filesystem level, which means:

Permissions changes are blocked by the mount’s read-only attribute
The chmod command cannot override the mount’s fundamental read-only state

Details

Mount Options Take Precedence

The -o ro (read-only) flag creates an immutable mount point
This flag overrides local filesystem permissions
Even if you’re root, you cannot modify permissions on a read-only mount

How to Change Permissions

If you need to modify permissions:

Unmount the read-only volume first
Change permissions on the original source directory
Remount with desired configuration

Alternative Approaches

Use mount -o remount,rw to temporarily make it writable
Modify source directory permissions before binding
Use more granular permission controls like ACLs

How to get the complete and exact list of mounted filesystems, though?

You can see ALL virtual and physical mounted filesystems in /proc/mounts, but sometimes this output will not show actions performed using mount or unmount, which we just have. If you check inside /etc/mtab, you will see your manual mounts, though.

Although you could just use findmnt which will give you a way more human-readable format. Please see this source for more information on using findmnt and some –parsing –examples for an even cleaner output.

collapsArch options: Array ( [title] => Archives [noTitle] => [inExcludeCat] => exclude [inExcludeCats] => [inExcludeYear] => exclude [inExcludeYears] => [showPages] => [sort] => DESC [linkToArch] => 1 [showYearCount] => 1 [expandCurrentYear] => [expandMonths] => 1 [expandYears] => 1 [expandCurrentMonth] => [showMonthCount] => 1 [showPostTitle] => 1 [expand] => 1 [showPostDate] => [debug] => 1 [postDateFormat] => m/d [postDateAppend] => after [accordion] => 0 [useCookies] => 1 [post_type] => post [taxoncmy] => category [postTitleLength] => 0 [blockId] => block-20 [widgetTitle] => Archives [style] => noArrows [showPosts] => 1 [customExpand] => [taxonomy] => category [number] => block-20 ) POST QUERY: SELECT wp_terms.slug, wp_posts.ID, wp_posts.post_name, wp_posts.post_title, wp_posts.post_author, wp_posts.post_date, YEAR(wp_posts.post_date) AS 'year', MONTH(wp_posts.post_date) AS 'month' , wp_posts.post_type FROM wp_posts LEFT JOIN wp_term_relationships ON wp_posts.ID = wp_term_relationships.object_id LEFT JOIN wp_term_taxonomy ON wp_term_taxonomy.term_taxonomy_id = wp_term_relationships.term_taxonomy_id LEFT JOIN wp_terms ON wp_terms.term_id = wp_term_taxonomy.term_id WHERE post_status='publish' AND wp_posts.post_type='post' GROUP BY wp_posts.ID ORDER BY wp_posts.post_date DESC POST QUERY RESULTS Array ( [0] => stdClass Object ( [slug] => tech-notes [ID] => 769 [post_name] => managing-read-only-mount-volumes-in-linux [post_title] => Managing read-only mount volumes (in Linux) [post_author] => 2 [post_date] => 2025-09-03 11:21:35 [year] => 2025 [month] => 9 [post_type] => post ) [1] => stdClass Object ( [slug] => tech-notes [ID] => 590 [post_name] => saul-list-of-local-linux-tools-programs [post_title] => List of Linux tools & programs [post_author] => 2 [post_date] => 2025-08-14 15:08:11 [year] => 2025 [month] => 8 [post_type] => post ) [2] => stdClass Object ( [slug] => tech-notes [ID] => 591 [post_name] => saul-list-of-online-software-tools [post_title] => List of online software tools [post_author] => 2 [post_date] => 2025-08-14 15:08:07 [year] => 2025 [month] => 8 [post_type] => post ) [3] => stdClass Object ( [slug] => tech-notes [ID] => 564 [post_name] => saul-list-of-homelab-tools [post_title] => List of homelab tools [post_author] => 2 [post_date] => 2025-08-14 15:07:54 [year] => 2025 [month] => 8 [post_type] => post ) [4] => stdClass Object ( [slug] => tech-notes [ID] => 670 [post_name] => spotify-tools-2 [post_title] => Spotify & music tools [post_author] => 2 [post_date] => 2025-08-13 16:37:28 [year] => 2025 [month] => 8 [post_type] => post ) [5] => stdClass Object ( [slug] => tech-notes [ID] => 596 [post_name] => waveshare-raspberry-pi-4g-hat-and-tutorials [post_title] => Waveshare Raspberry Pi 4g Hat and tutorials [post_author] => 2 [post_date] => 2025-08-08 14:54:22 [year] => 2025 [month] => 8 [post_type] => post ) )

Saul's Blog