usrmerge

usr/lib/permission-hardener.d/25_default_whitelist_passwd.conf

@@ -12,5 +12,4 @@
 #
 # See also: https://www.kicksecure.com/wiki/SUID_Disabler_and_Permission_Hardener#passwd
 /usr/bin/passwd exactwhitelist
-/bin/passwd exactwhitelist
 /usr/bin/passwd 0755 root root

usr/lib/permission-hardener.d/25_default_whitelist_ssh.conf

@@ -12,4 +12,4 @@
 ## SSH, and is likely rarely used, thus this should be safe to disable.
 #ssh-agent matchwhitelist
 #ssh-keysign matchwhitelist
-#/lib/openssh matchwhitelist
+#/usr/lib/openssh matchwhitelist

usr/lib/permission-hardener.d/25_default_whitelist_unix_chkpwd.conf

@@ -8,4 +8,3 @@
 ## required for performing password validation from unprivileged user
 ## processes such as KScreenLocker's unlock prompt
 /usr/sbin/unix_chkpwd exactwhitelist
-/sbin/unix_chkpwd exactwhitelist

usr/lib/permission-hardener.d/25_default_whitelist_virtualbox.conf

@@ -7,7 +7,6 @@
 
 ## TODO: research
 /usr/lib/virtualbox/ matchwhitelist
-/lib/virtualbox/ matchwhitelist
 VirtualBoxVM matchwhitelist
 VBoxSDL matchwhitelist
 VBoxNetNAT matchwhitelist