[grsec] "denied attempt to chmod +s" in chroot: exceptions possible?

[Marc Schiffbauer]

Hi,

I configured:

  [*] Chroot jail restrictions
      [*]    Deny (f)chmod +s    

in the Kernel.

Is there a way to allow an admin to do "chmod +s" in a chroot when
he is authenticated to the RBAC system with a special ACL?

I ask, because I want to setup a chroot sarge system where a root
user inside the chroot can upgrade the chroot-system.

Thanks in advance

-Marc
-- 
BUGS My programs  never  have  bugs.  They  just  develop  random
     features.  If you discover such a feature and you want it to
     be removed: please send an email to bug at links2linux.de