45

🥺: the best sudo replacement(xeiaso.net)

posted
by
Avatar
frankfurt_schoolgirl [she/her]@hexbear.net
in
Avatar
technology@hexbear.net
38 comments
hidereport

Also for some reason this article created a 500+ comment thread on the Orange Website where boomers complain about the authors pronouns.

Sort:
HotTopControversialNewOld
You are viewing a single thread.
View all comments View context
Avatar
invalidusernamelol [he/him]@hexbear.net
8 points
*

It’s an incredibly secure solution to root access control. Every rejection is logged as well

The key part is the exec call at the end. One of the interesting things about the exec-family of system calls in UNIX is that it replaces the current process if it succeeds. This means that the function will never return unless some error happened, so the exec method always returns an error. This will make error handling happen properly and if things fail the process will exit with a non-zero error code:

    Finished release [optimized] target(s) in 0.06s
     Running `target/release/🥺 ls`
Error: Os { code: 1, kind: PermissionDenied, message: "Operation not permitted" }

Every time you run it, it spits out an error

🥺 ls

:bottom-speak: :speech-l:

PermissionDenied, message: "Operation not permitted"

:speech-r: :top-use-words:

permalink
report
parent
reply
Avatar
dung_Eater [none/use name]@hexbear.net
6 points

lol, this is fucking hilarious. sad that i have literally zero people in my life that would understand this

permalink
report
parent
reply
Avatar
invalidusernamelol [he/him]@hexbear.net
5 points

The joke is about sudo replacements being looked down on by the community, so they wrote a sudo replacement that is told “no” by the kernel.

permalink
report
parent
reply
Avatar
frankfurt_schoolgirl [she/her]@hexbear.netOP
3 points

That’s because the binary needs the right permissions. If it was root + setuid it should work on Unix.

permalink
report
parent
reply
Avatar
invalidusernamelol [he/him]@hexbear.net
2 points

So building it with the right permissions would actually allow it to run as a sudo alternative?

permalink
report
parent
reply
Avatar
frankfurt_schoolgirl [she/her]@hexbear.netOP
4 points

Yeah it would be essentially the same as sudo with the NOPASSWD: ALL option set in /etc/sudoers

permalink
report
parent
reply
Show more comments

technology

!technology@hexbear.net

Create post

On the road to fully automated luxury gay space communism.

Spreading Linux propaganda since 2020

Rules:

  • 1. Obviously abide by the sitewide code of conduct. Bigotry will be met with an immediate ban
  • 2. This community is about technology. Offtopic is permitted as long as it is kept in the comment sections
  • 3. Although this is not /c/libre, FOSS related posting is tolerated, and even welcome in the case of effort posts
  • 4. We believe technology should be liberating. As such, avoid promoting proprietary and/or bourgeois technology
  • 5. Explanatory posts to correct the potential mistakes a comrade made in a post of their own are allowed, as long as they remain respectful
  • 6. No crypto (Bitcoin, NFT, etc.) speculation, unless it is purely informative and not too cringe
  • 7. Absolutely no tech bro shit. If you have a good opinion of Silicon Valley billionaires please manifest yourself so we can ban you.

Community stats

  • 16

    Monthly active users

  • 5.1K

    Posts

  • 60K

    Comments

Community moderators