`doas` vs `sudo` discussion

I recently found out about doas and now I wonder how it compares to sudo.

I can RTFM, but I am interested in people’s experience, not documentation here.

1 Like

I certainly wouldn’t keep both on my system, as that just doubles the attack surface.

Removing sudo might break some poorly-written scripts and programs, that have sudo as a hardcoded dependency.

1 Like

Yes, sudo is the defacto standard.
I can’t say much about doas, I’ve only ran it a few times. However (while this may mean actual nothing), I have contributed code to sudo and I know the author and trust him (Heaven help me, Todd). I have not kept up on vulnerabilities etc, but I’m sure he would have patched it as soon as it came up.