the kernel should prevent loading/unloading of LKMs
   whenever the secure level is >= 1.  that means if you
   are doing kernel development you just build a kernel
   which has securelevel set to -1.  you won't be doing
   kernel development on a production machine, so there's
   no problem.  right?

yup.  i load roland's defeat-securelevel.o so i can hack with lkm's
from /etc/rc.local, so that it is able to be loaded (init doesn't
raise the securelevel until /etc/rc finishes..)

.mrg.