On Tue, Jul 13, 2004 at 11:19:37AM -0600, Andrew Jorgensen wrote: > > > Since niced_bash is the login shell, there is no way to get around > > > it. It is the first thing ssh executes when you log in. Of course > > > you are correct in stating that a user can arbitrarily bump his > > > priority back up to normal with the renice command. > > > > No, he can't. See man renice. > > But that's listed in the BUGS section, so expect it to be changed or > at least circumventable by writing your own version of renice.
The library's not enforcing that; it's the kernel, via CAP_SYS_NICE.
The administrator has control over that capability.
Mike
.___________________________________________________________________.
Michael A. Halcrow
Security Software Engineer, IBM Linux Technology Center
GnuPG Fingerprint: 05B5 08A8 713A 64C1 D35D 2371 2D3C FDDA 3EB6 601D
I stole this Sig.
pgpagVgti6k1D.pgp
Description: PGP signature
____________________ BYU Unix Users Group http://uug.byu.edu/ ___________________________________________________________________ List Info: http://uug.byu.edu/cgi-bin/mailman/listinfo/uug-list
