Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
en:philosophy:sudo_complexity [2022/03/26 20:30] i3_relativism |
en:philosophy:sudo_complexity [2022/11/03 14:08] (current) throgh [Solution with a strict and lightweight replacement] |
||
---|---|---|---|
Line 1: | Line 1: | ||
- | ===== | + | ====== The complexity of " |
- | issues with the default sudo config. | + | |
- | The core of the problem was really that some people like to use sudo to build elaborate sysadmin infrastructures with highly refined sets of permissions and checks and balances. Some people (me) like to use sudo to get a root shell without remembering two passwords. And so there was considerable tension trying to ship a default config that would mostly work with the second group, but not be too permissive | + | Starting with the release |
- | Writing a small simple replacement meant that we could ship something in base which was totally unsuitable for the power sysadmin group. It could only work for me, and I would be happy. Meanwhile, those who truly needed all the flexibility of sudo would install it from ports, and they would be happy. | + | ===== Introduction |
- | The code was just sitting around in a spare source tree for a while because any “like this, but different” software release immediately results | + | The program <color # |
- | Talking with deraadt and millert, however, I wasn’t quite alone. There were some concerns that sudo was too big, running too much code in a privileged process. And there was also pressure to enable even more options, because the feature set shipped in base wasn’t big enough. (As shipped in OpenBSD, | + | Documented reports like [[https:// |
- | First, doas needed | + | There are furthermore issues reported with the default <color # |
- | In to cvs it went as doas. Incidentally, | + | ===== Solution with a strict and lightweight replacement ===== |
- | And then the real hacking and chopping could begin. I always thought the most important feature of sudo was that it insulted the user after entering | + | Using <color # |
- | + | ||
- | Deleting | + | |
- | + | ||
- | The config file syntax is crudely inspired by pf.conf. Instead | + | |
- | + | ||
- | We’ve been contemplating | + | |
- | + | ||
- | Coming full circle, the majority of tweaking and polishing of doas now appears to have returned to refinement of the good environment list and the bad environment list. I have built the thing I hate. At least it’s small. | + | |
- | + | ||
- | The doas code lives in cvs. | + | |
- | + | ||
- | doas was created to run on OpenBSD. I suppose you could port it, but I don’t plan to. Figuring out a replacement for auth_userokay is probably the hard part. | + |