[My apologies to those who have seen this letter earlier ... -khj]
I have just begun the Fall offering of my senior/graduate Real-Time
Systems course. I have been planning for months to use RT-Linux and
COMEDI in the lab portion of the course ...
My concern is the need of root privileges to install the students'
real-time, data acquisition applications ('insmod', 'rmmod'). Note
that I have already built/installed 'sudo' that allows me to restrict
which commands can be executed "as root".
But since "modules" run as part of the kernel, can't a (malicious)
user essentially execute what they wish within their module code
(e.g., change ownership of files, access restricted info, etc.)?
Hopefully my fears are unwarranted.
I figure that I have two options:
o Use the root-limiting capability of 'sudo' and "trust the Force"
o Disconnect the real-time machines from our campus net
I am most interested in your comments. How do you allow your users
access to 'insmod', etc.? Do you just "trust" them? Have you had any
problems similar to those I have aired above?
Thanks for any help that you might provide! And special thanks to
those who have provided both RT-Linux and COMEDI ... I can't wait to
really begin using them.
-Prof Kenneth H Jacker [EMAIL PROTECTED]
-Computer Science Dept www.cs.appstate.edu/~khj
-Appalachian State Univ
-Boone, NC 28608 USA
--- [rtl] ---
To unsubscribe:
echo "unsubscribe rtl" | mail [EMAIL PROTECTED] OR
echo "unsubscribe rtl <Your_email>" | mail [EMAIL PROTECTED]
----
For more information on Real-Time Linux see:
http://www.rtlinux.org/~rtlinux/
