I donīt think that it is a good idea to change the behaviour in the
But for you I suppose, you write a module which handles everything with
the immutable flag. When this module is loaded it can handle everything
with this flag.
You can assure that the rmmod process is on a local tty and return EBUSY
or EPERM if it is not.
When you want to make changes to your system, you just
and when you want to make it secure again, type
So you can control the protection on a local tty and donīt need to hack
the new kernel each time you want to use a new one.
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to firstname.lastname@example.org
Please read the FAQ at http://www.tux.org/lkml/