| Deutsch English Français Italiano |
|
<v1e16r$1jc7c$1@news1.tnib.de> View for Bookmarking (what is this?) Look up another Usenet article |
Path: ...!weretis.net!feeder8.news.weretis.net!news1.tnib.de!feed.news.tnib.de!news.tnib.de!.POSTED.torres.zugschlus.de!not-for-mail From: Marc Haber <mh+usenetspam1118@zugschl.us> Newsgroups: comp.os.linux.misc Subject: Re: Yet Another New systemd Feature Date: Tue, 07 May 2024 21:59:22 +0200 Organization: private site, see http://www.zugschlus.de/ for details Message-ID: <v1e16r$1jc7c$1@news1.tnib.de> References: <v1941f4d4m@dont-email.me> <v1a0j2eb40@dont-email.me> <v1a3cbf08a@dont-email.me> <71362256743962b72394883a66a5504a@msgid.frell.theremailer.net> <v1db91$1hnge$1@news1.tnib.de> <c7674554-bbb0-cd6d-86ee-2abc5ed0e3a6@example.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Injection-Date: Tue, 7 May 2024 19:59:23 -0000 (UTC) Injection-Info: news1.tnib.de; posting-host="torres.zugschlus.de:81.169.166.32"; logging-data="1683692"; mail-complaints-to="abuse@tnib.de" X-Newsreader: Forte Agent 6.00/32.1186 Bytes: 1976 Lines: 20 D <nospam@example.net> wrote: >Since you are the expert witness... what is the point of OpenBSD:s doas >instead of sudo? If the two were to battle to the death with the lirpa, >which one would win? runas is much simpler and thus has less attack surface. Sudo has a complex parser of a historically grown configuration file format, a plugin interface. I'd rather not have that in a suid root binary. When I took over sudo maintenance in Debian, I was strongly considering to migrate my own systems to doas because of the smaller attack surface, but than decided that I need to eat my own dog food and stayed with sudo. Greetings Marc -- ---------------------------------------------------------------------------- Marc Haber | " Questions are the | Mailadresse im Header Rhein-Neckar, DE | Beginning of Wisdom " | Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fon: *49 6224 1600402