From f5ec6027b95fe1eb98e669ca693ea21b44f51ab5 Mon Sep 17 00:00:00 2001
From: mboelen <michael@cisofy.com>
Date: Mon, 8 Sep 2014 15:41:57 +0200
Subject: [PATCH] Add root-only to some tests

---
 include/tests_firewalls | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/include/tests_firewalls b/include/tests_firewalls
index 2b8b32ec..79a2a1f0 100644
--- a/include/tests_firewalls
+++ b/include/tests_firewalls
@@ -94,7 +94,7 @@
     # Test        : FIRE-4512
     # Description : Check iptables for empty ruleset
     if [ ! "${IPTABLESBINARY}" = "" -a ${IPTABLES_ACTIVE} -eq 1 ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
-    Register --test-no FIRE-4512 --preqs-met ${PREQS_MET} --os Linux --weight L --network NO --description "Check iptables for empty ruleset"
+    Register --test-no FIRE-4512 --preqs-met ${PREQS_MET} --os Linux --weight L --network NO --root-only YES --description "Check iptables for empty ruleset"
     if [ ${SKIPTEST} -eq 0 ]; then
         FIND=`${IPTABLESBINARY} --list --numeric | egrep -v "^(Chain|target|$)" | wc -l | tr -d ' '`
         if [ "${FIND}" = "0" ]; then
@@ -115,7 +115,7 @@
     # Test        : FIRE-4513
     # Description : Check iptables for unused rules
     if [ ! "${IPTABLESBINARY}" = "" -a ${IPTABLES_ACTIVE} -eq 1 ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
-    Register --test-no FIRE-4513 --preqs-met ${PREQS_MET} --os Linux --weight L --network NO --description "Check iptables for unused rules"
+    Register --test-no FIRE-4513 --preqs-met ${PREQS_MET} --os Linux --weight L --network NO --root-only YES --description "Check iptables for unused rules"
     if [ ${SKIPTEST} -eq 0 ]; then
         FIND=`${IPTABLESBINARY} --list --numeric --line-numbers --verbose | awk '{ if ($2=="0") print $1 }' | xargs`
         if [ "${FIND}" = "" ]; then