Hi, I am trying to track down a bug, (or at least stop a problem from happening). The bug is that some service is setting the system date (via stime(2)). (I know which service it is, I know what the bug is, and I have a way to find it already via dtrace. Actually, I wrote the service specifically for this bug, but that's another story). A colleague suggested a way to at least stop the problem from occuring is to run:
# usermod -K 'limitpriv=all,!sys_time' root This works fine. Root can no longer set the date. However, the service (which runs as root) is still quite happy to change the date. So, the question is: When do the privileges take effect when using usermod? Is this only on login? Is there a way to set privileges for all root id processes, including processes started from SMF? thanks, max
