diff options
Diffstat (limited to 'abuild.in')
| -rwxr-xr-x | abuild.in | 9 |
1 files changed, 9 insertions, 0 deletions
@@ -552,6 +552,15 @@ postcheck() { warning "World writeable directories found:" echo "$i" fi + # check so we dont have any suid root binaries that are not + i=$(find "$dir" -type f -perm +6000 \ + | xargs scanelf --nobanner --etype ET_EXEC \ + | sed "s|ET_EXEC $dir|\t|") + if [ -n "$i" ]; then + error "Found non-PIE files that has SUID:" + echo "$i" + return 1 + fi return 0 } |