An interesting idea raised elsewhere was that of protecting process's
from external influences (such as signals) for some given security
level.  Quickly thinking on this, what I think would work was having
a sysctl flag, which was a set-only for securelevel >= 0, that allowed
proceses to block/ignore/handle SIGKILL and SIGSTOP in addition to the
normal cast of signals.  Also, being able to protect select processes,
in general, from ptrace() might be useful.

Comments ?

Darren