hook
September 16, 2023, 6:16pm
1
I recently found out about doas and now I wonder how it compares to sudo.
I can RTFM, but I am interested in people’s experience, not documentation here.
doas (“dedicated openbsd application subexecutor”) is a program to execute commands as another user. The system administrator can configure it to give specified users privileges to execute specified commands. It is free and open-source under the ISC license and available in Unix and Unix-like operating systems.
doas was developed by Ted Unangst for OpenBSD as a simpler and safer sudo replacement. Unangst himself had issues with the default sudo config, which was his motivation to develop doas.
sudo (/suːduː/ or /ˈsuːdoʊ/) is a program for Unix-like computer operating systems that enables users to run programs with the security privileges of another user, by default the superuser. It originally stood for "superuser do", as that was all it did, and it is its most common usage; however, the official Sudo project page lists it as "su 'do' ". The current Linux manual pages for su define it as "substitute user", making the correct meaning of sudo "substitute user, do Unlike the similar comma...
I certainly wouldn’t keep both on my system, as that just doubles the attack surface.
Removing sudo might break some poorly-written scripts and programs, that have sudo as a hardcoded dependency.
1 Like
Yes, sudo is the defacto standard.
