FHS: Drop /usr/bin/su from list of allowed SUID binaries

In the Makefile (util-linx.nm) we specify some capabilities to avoid setting
the suid bit.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>

diff --git a/src/libpakfire/fhs.c b/src/libpakfire/fhs.c
index f0ddc37ce0ea1e6c6dc2ba24b504a6ce5ebf1b9f..8e85f29d76d799ef9e5ae5354af504cec7b5a92b 100644 (file)
--- a/src/libpakfire/fhs.c
+++ b/src/libpakfire/fhs.c
@@ -69,7 +69,6 @@ static const struct pakfire_fhs_check {
        { "/usr/bin/ksu",         S_IFREG, S_ISUID|0755, "root", "root", 0 },
        { "/usr/bin/passwd",      S_IFREG, S_ISUID|0755, "root", "root", 0 },
        { "/usr/bin/pkexec",      S_IFREG, S_ISUID|0755, "root", "root", 0 },
-       { "/usr/bin/su",          S_IFREG, S_ISUID|0755, "root", "root", 0 },
        { "/usr/bin/sudo",        S_IFREG, S_ISUID|0755, "root", "root", 0 },
 
        // Any files in /usr/{,s}bin must be owned by root and have 0755