←back to thread

Run0, a systemd based alternative to sudo, announced

(mastodon.social)
466 points CoolCold | 1 comments | 29 Apr 24 23:59 UTC | HN request time: 0.215s | source
Show context
pmlnr ◴[30 Apr 24 06:14 UTC] No.40207739[source]
> The developer talks about the weaknesses of sudo, and how it has a large possible attack surface

Poettering's hypocrisy is painful.

replies(2): >>40207851 #>>40215571 #
mort96 ◴[30 Apr 24 06:30 UTC] No.40207851[source]
Is it? Does systemd's sudo replacement also have a lot of complex code running as root in a suid binary?

Because that's what he's complaining about

replies(3): >>40207883 #>>40208574 #>>40208584 #
mid-kid ◴[30 Apr 24 08:35 UTC] No.40208574[source]
systemd has a lot of complex code running as root (that can be reached without privileges more often than not) and has had its fair share of CVEs.

The hypocrisy is in calling out a different project for being an overengineered tool running with too high privileges.

replies(1): >>40215948 #
1. mort96 ◴[30 Apr 24 20:32 UTC] No.40215948[source]
It's not just about running as root though, but as being in a SUID binary.