this post was submitted on 23 Mar 2024
101 points (95.5% liked)

Linux

48248 readers
848 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
 

I see people talking about doas saying it's just like sudo but with less features. I'm just wondering if there is any situation where you should use doas or if it's just personal preference.

you are viewing a single comment's thread
view the rest of the comments
[–] fuckwit_mcbumcrumble 15 points 8 months ago (4 children)

Does the size of a 6kb program really make that much of a difference?

Side note: If I'm reading this right (ignoring dependencies) sudo is 6kb while doas is 14kb.

[–] [email protected] 16 points 8 months ago (1 children)
[–] [email protected] 18 points 8 months ago (1 children)

Damn, that's like 4 floppies!

[–] [email protected] 5 points 8 months ago (1 children)

The concern is not storage space, but potential bugs leading to security issues. For OpenBSD this is very important, and so they made doas.

[–] [email protected] 1 points 8 months ago (1 children)

I understand the concern - but it's not warranted. LOC is a bad predictor of security. And fwiw /usr/bin/sudo on my system is only 227K.

The OpenBSD team does fantastic work. I'm assuming doas will be a good tool and probably more secure that sudo generally. But "size" isn't the best way to determine that. It's not even a good way.

[–] [email protected] 2 points 8 months ago

Tedu (author of doas) wrote about it in 2015:
"There were some concerns that sudo was too big, running too much code in a privileged process. And there was also pressure to enable even more options, because the feature set shipped in base wasn’t big enough. (As shipped in OpenBSD, the compiled sudo was already five times larger than just about any other setuid program.)"
https://flak.tedunangst.com/post/doas

[–] [email protected] 14 points 8 months ago (1 children)
[–] fuckwit_mcbumcrumble 14 points 8 months ago (1 children)

Ya know, I wish I could at least say something about being european and using commas instead of periods for decimal points, but I can't even say that. Still 6MB fully installed is nothing these days.

[–] [email protected] 6 points 8 months ago (1 children)

And here I am wondering what went so wrong with sudo that it needs 6 fucking mibibytes to work its simple magic.

[–] [email protected] 9 points 8 months ago

Yeah, it's gonna take forever to download over my 14.4k baud modem.

STOP PICKING UP THE PHONE MOM!

[–] tabular 11 points 8 months ago (1 children)

Less lines of code needed means less chances of errors and potential vulnerabilities (if number and quality of eyeballs were the same)

[–] [email protected] 3 points 8 months ago (1 children)

Also only really applies if you are comparing programs in the same programming language as some programs have lines that are significantly more expressive than others. Conversely, some languages have constructs that are significantly more bug-prone than others (e.g. for loops with explicit integer indices instead of higher order functions like map or iterators to iterate over a collection).

[–] tabular 1 points 8 months ago* (last edited 8 months ago)

Sure, I was just speaking in general.

[–] [email protected] 2 points 8 months ago

No, but it's cleaner and designed for my usecase, and no real work to setup for me, all I had to do was add an alias