Date: Mon, 9 Jun 1997 23:09:27 +0200 From: Mark Huizer <xaa@stack.nl> To: Luigi Rizzo <luigi@iet.unipi.it> Cc: hackers@FreeBSD.ORG Subject: your rtprio stuff Message-ID: <19970609230927.65057@xaa.stack.nl> In-Reply-To: <Pine.BSF.3.95q.970609215133.253A-100000@prova.iet.unipi.it>; from Luigi Rizzo on Mon, Jun 09, 1997 at 10:25:58PM %2B0200 References: <Pine.BSF.3.95q.970609215133.253A-100000@prova.iet.unipi.it>
next in thread | previous in thread | raw e-mail | index | archive | help
> 2) (major problem) rtprio does not allow the necessary priority > settings if not superuser; but it cannot be made suid root since > it does not drop priority before execing the requested process. > Of the following two fixes: > > a) modify the rtprio syscall so that it can set realtime priority > for a restricted set of users (but then, how to configure this > set ?); > > b) modify the rtprio(1) command so that it can run suid-root, by > allowing RTP_SET for a configurable class of users (e.g. > /etc/rtprio.users) and calling setuid to restore the real uid > before calling execvp If you don't mind the risk of letting them run other commands in real time, you could of course use commands like sudo or opcom that will give selected users root-privs without su for certain commands Mark
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19970609230927.65057>