Skip to main content
Topic solved
This topic has been marked as solved and requires no further attention.
Topic: [SOLVED] Can we have doas? (a secure replacement for sudo) (Read 3779 times) previous topic - next topic
0 Members and 1 Guest are viewing this topic.

[SOLVED] Can we have doas? (a secure replacement for sudo)

Seeing this security issue about sudo, if it possible the team could maintain another implementation of sudo called doas?
doas is a secure replacement of sudo and was created by the same team behind openbsd. This team always has focused on security software like: libressl, openssh, etc.
To put point in favor, in fact, voidlinux is maintain this program in its main repo. this program it's way more simple than sudo in many ambit like configuration and development.
However isn't an official port from openbsd but it try to attempt the more close possible to the original program.

Re: Can we have doas? (a secure replacement for sudo)

Reply #1
There is an AUR package for that
ARMtix


Re: Can we have doas? (a secure replacement for sudo)

Reply #3
 if it possible the team could maintain another implementation of sudo called doas?
if it possible the team could maintain another implementation of sudo called doas?



The short answer is no. Probably disappointing for you, but that is the bottom line.
We are a small team, and the request involves SELinux as a depend, so no, no time left for such thing.
The package requested is also not widely used that is justifies to be in the repos.

If you don't get it working from the AUR, perhaps start a thread in the forum's AUR section asking for help.

Re: Can we have doas? (a secure replacement for sudo)

Reply #4
@Glats

Do not know what this doas-thingy needs to do for you, but is it possible  su  provides a solution  like so :

Code: [Select]
su -c 'TheCommandYouWantExecuted'

Upon ENTER :  passwd-prompt pops up after which  command executes ; upon completion the credentials are dropped and you are returned to your original position in the hierarchy.
If no user is specified root is assumed.

Re: Can we have doas? (a secure replacement for sudo)

Reply #5
@Glats

Do not know what this doas-thingy needs to do for you, but is it possible  su  provides a solution  like so :

Code: [Select]
su -c 'TheCommandYouWantExecuted'

Upon ENTER :  passwd-prompt pops up after which  command executes ; upon completion the credentials are dropped and you are returned to your original position in the hierarchy.
If no user is specified root is assumed.

su requires root password whereas sudo and doas use user's
ARMtix

Re: Can we have doas? (a secure replacement for sudo)

Reply #6
if it possible the team could maintain another implementation of sudo called doas?

The short answer is no. Probably disappointing for you, but that is the bottom line.
We are a small team, and the request involves SELinux as a depend, so no, no time left for such thing.
The package requested is also not widely used that is justifies to be in the repos.

If you don't get it working from the AUR, perhaps start a thread in the forum's AUR section asking for help.
Ah ok. no problem i understand. I didnt noticed that the program has SELinux as dependency. too bad.
anyways, thanks.

Re: Can we have doas? (a secure replacement for sudo)

Reply #7
I am using opendoas, doesn't SEEM to use SELinux.


 

Re: Can we have doas? (a secure replacement for sudo)

Reply #9
Seeing this security issue about sudo, if it possible the team could maintain another implementation of sudo called doas?
doas is a secure replacement of sudo and was created by the same team behind openbsd. This team always has focused on security software like: libressl, openssh, etc.
To put point in favor, in fact, voidlinux is maintain this program in its main repo. this program it's way more simple than sudo in many ambit like configuration and development.
However isn't an official port from openbsd but it try to attempt the more close possible to the original program.
You can install opendoas and it works pretty well and is in the standard repos for artix.


Re: [SOLVED] Can we have doas? (a secure replacement for sudo)

Reply #11
https://www.archlinux.org/packages/community/x86_64/opendoas This version works perfect.
The only thing bugged me is that yay use sudo :(

If you don't mind changing your AUR helper, pikaur supports doas through a configuration option.