On Fri, Jan 12, 2007 at 03:20:22PM -0500, as wrote: > Hi Rob, > > Thanks for the input. We tried this but it seemed to drop some other > privileges as well (could be some mistake on our part). > > But actually this is not what we want. We want to allow this > particular user to have the necessary privileges to use scheduling, > but we don't to give him root access. I'm guessing there must be some > way to give that user the necessary privileges.
Well: 1) One of unix's main security faults is that these things are all or nothing, *but* 2) People have been trying to fix that with 'capabilities': check out: `man 7 capabilities` :: you want CAP_SYS_NICE or http://ftp.kernel.org/pub/linux/libs/security/linux-privs/kernel-2.4/capfaq-0.2.txt Good luck, - Rob .
