[Systrace] Replacing suid programs

[Ray]

Hi,
I'm trying to setup a completely systraced system, but I can't
figure out how to get suid programs to run without suid.  In order
to run suid programs properly I'd need privilege elevation, which
requires root to run it to begin with.  Without suid, the only time
I can run something as root would be to either login as root, which
is obviously out of the question, or login through a daemon that
was systraced from rc.  That means xdm, sshd, and even inetd are
possible.  However, that leaves local console users out.

How does everybody else do it?  Thanks.

-Ray-