JOHNW@SLACVM.SLAC.STANFORD.EDU (06/06/91)
Hi, How does one go about granting users temporary su privilege so that they can load kernel extensions to the kernel using sysconfig and then return them to the non-privileged user status? Thanks, Jonathan W.
benson@odi.com (Benson I. Margulies) (06/06/91)
That's not how it works. What you want to do is write a setuid root program that is willing to load kernel extensions. It would be most unwise to just pass any old pathname along to sysconfig, unless yours users are utterly trustworthy. I'd do the following: create /usr/local/kx, mode 755, root owned. install users kernel extension binaries into there after auditing the code. write a setuid root program that took a name, and looked for /usr/local/kx/NAME.ext, and loaded that iff it wasn't already loaded. -- Benson I. Margulies