+# Using su (or sudo) as root to a less privileged user might allow the other
+# user to run arbitrary commands as root. See also Debian bugs #628843 and
+# #657784.
+if test "`id -u`" -eq 0; then
+ su() {
+ echo 'never su as root' >&2
+ return 1
+ }
+fi
+