Re: FW: Adding OpenBSD sudo to the FreeBSD base system?

• Previous message: asym: "Re: FW: Adding OpenBSD sudo to the FreeBSD base system?"
• In reply to: asym: "Re: FW: Adding OpenBSD sudo to the FreeBSD base system?"
• Next in thread: Stephen Major: "FW: Adding OpenBSD sudo to the FreeBSD base system?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 22 Jul 2005 06:05:36 +0100
To: asym <bsdlists@rfnj.org>

On Fri, Jul 22, 2005 at 12:28:41AM -0400, asym wrote:
> At 23:07 7/21/2005, markzero wrote:
> >On Thu, Jul 21, 2005 at 10:23:56PM -0400, ender wrote:
> >> Stephen Major wrote:
> >>
> >> If sudo offered the opportunity for more features, but by default
> >> behaved exactly the same way as su, I would see no disadvantages to
> >> replacing su with sudo. Am i missing something?
> >
> >What happens if you maintain systems that don't need sudo?
>
> You don't use the additional features. That was a hard one. Next?

Don't patronise me. This is supposed to be a mailing list discussing
security, not a childish pissing contest.

It is a valid concern when a tiny, well tested SUID binary is to be
replaced with one almost seven times its size:

$ wc -l /usr/src/usr.bin/su/su.c
     572 /usr/src/usr.bin/su/su.c

By comparison:

  http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/sudo/

$ du -h `which sudo`
 98K /usr/local/bin/sudo
$ du -h `which su`
 14K /usr/bin/su

I am not opposed to having sudo in the base system, I am however opposed
to it replacing su. I use sudo on about a third of my systems, on those
that I don't, I would no longer have the option to remove it unless I
wanted a crippled, su-less system. If sudo does not replace su, those
that don't use it can remove it. Those that use it - good, less work for
them. Everybody is happy.

M

-- 
pgp: http://www.darklogik.org/pub/pgp/pgp.txt
B776 43DC 8A5D EAF9 2126 9A67 A7DA 390F DEFF 9dD1

• application/pgp-signature attachment: stored

• Previous message: asym: "Re: FW: Adding OpenBSD sudo to the FreeBSD base system?"
• In reply to: asym: "Re: FW: Adding OpenBSD sudo to the FreeBSD base system?"
• Next in thread: Stephen Major: "FW: Adding OpenBSD sudo to the FreeBSD base system?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: FW: Adding OpenBSD sudo to the FreeBSD base system? ... At 23:07 7/21/2005, markzero wrote: ... >> replacing su with sudo. ... You don't use the additional features. ... To unsubscribe, ... (FreeBSD-Security) Re: FW: Adding OpenBSD sudo to the FreeBSD base system? ... >> What happens if you maintain systems that don't need sudo? ... > Do a few extra built in features for some outweigh everyone gettting ... (freebsd-questions) Re: sudo segfaults on large buffer ... Sudo version 1.6.4 is now available. ... fix the majority of problems in the sudo bugs database and adds ... features a number of people have asked for. ... frequent releases in the near future (it has been quite a while ... (Vuln-Dev) Re: Sudoers list? ... features that sudo provides to manage the granting of privileges (and ... (Ubuntu)