On Mon, May 02, 2005 at 08:09:03PM +0200, Johannes Nicolai wrote: > Is there any way to determine if the program that should be executed with > execv /... is an suid program? In the policy of the program being run you can add ", if user = root" to each rule. However, this won't distinguish between a suid program and a program run by root. -Ray-