diff options
| author | mboelen <michael@cisofy.com> | 2014-09-08 17:41:57 +0400 |
|---|---|---|
| committer | mboelen <michael@cisofy.com> | 2014-09-08 17:41:57 +0400 |
| commit | f5ec6027b95fe1eb98e669ca693ea21b44f51ab5 (patch) | |
| tree | e6c85dce4b21c3993f8b35296874dc981b56a339 /include/tests_firewalls | |
| parent | f581c5181a0e49b1ad40040f907bef2c79d7dcc3 (diff) | |
Add root-only to some tests
Diffstat (limited to 'include/tests_firewalls')
| -rw-r--r-- | include/tests_firewalls | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/include/tests_firewalls b/include/tests_firewalls index 2b8b32ec..79a2a1f0 100644 --- a/include/tests_firewalls +++ b/include/tests_firewalls @@ -94,7 +94,7 @@ # Test : FIRE-4512 # Description : Check iptables for empty ruleset if [ ! "${IPTABLESBINARY}" = "" -a ${IPTABLES_ACTIVE} -eq 1 ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi - Register --test-no FIRE-4512 --preqs-met ${PREQS_MET} --os Linux --weight L --network NO --description "Check iptables for empty ruleset" + Register --test-no FIRE-4512 --preqs-met ${PREQS_MET} --os Linux --weight L --network NO --root-only YES --description "Check iptables for empty ruleset" if [ ${SKIPTEST} -eq 0 ]; then FIND=`${IPTABLESBINARY} --list --numeric | egrep -v "^(Chain|target|$)" | wc -l | tr -d ' '` if [ "${FIND}" = "0" ]; then @@ -115,7 +115,7 @@ # Test : FIRE-4513 # Description : Check iptables for unused rules if [ ! "${IPTABLESBINARY}" = "" -a ${IPTABLES_ACTIVE} -eq 1 ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi - Register --test-no FIRE-4513 --preqs-met ${PREQS_MET} --os Linux --weight L --network NO --description "Check iptables for unused rules" + Register --test-no FIRE-4513 --preqs-met ${PREQS_MET} --os Linux --weight L --network NO --root-only YES --description "Check iptables for unused rules" if [ ${SKIPTEST} -eq 0 ]; then FIND=`${IPTABLESBINARY} --list --numeric --line-numbers --verbose | awk '{ if ($2=="0") print $1 }' | xargs` if [ "${FIND}" = "" ]; then |