mhoyeSep 2, 2023
Naescent suspicion: if a utility tells me the language it was written in before it tells me what it does or why it was created, I should start looking for alternatives immediately.
Show threadEmelia ๐Ÿ‘ธ๐ŸปSep 2, 2023
@mhoye I think the only one that carries a little weight is Rust, especially when comparing to a predecessor being written in C.. but otherwise I'd agree
Show threadPyrex, nightsworn alchemistSep 2, 2023

@thisismissem @mhoye

I agree to an extent! I don't agree if the story being told is that "being written in Rust" is the entire security model of the program.

Show threadEmelia ๐Ÿ‘ธ๐ŸปSep 2, 2023
@pyrex @mhoye yeah, just more that it's unlikely to have major memory or use after free issues; e.g., I think sudo-rs explained their approach well
Show threadPyrex, nightsworn alchemistSep 2, 2023

@thisismissem @mhoye

Honestly I don't see anything in their readme.md that convinces me they understand why setuid binaries are scary and sudo specifically is _really_ scary.

To be clear, that is also my opinion on OG sudo, but OG sudo wasn't developed with the possible advantage of hindsight.

Show threadEmelia ๐Ÿ‘ธ๐Ÿป
@pyrex @mhoye I mean, if distros seem to need a sudo setup, if I have to choose between a C version and a rust version, I know I'd probably choose the rust one.
Sep 2, 2023 at 6:58pmWeb
Show threadPyrex, nightsworn alchemistSep 2, 2023

@thisismissem @mhoye

Same, if I were convinced both had undergone reasonable amounts of testing.

I haven't done enough research to know if sudo-rs has. AFAICT it explicitly hasn't ("an audit of sudo-rs will take place in September 2023" implies it hasn't happened yet) so I wouldn't use it now.

Maybe in a year if there aren't any CVEs that make my hair stand on end!

Show thread[email protected]Sep 3, 2023
@thisismissem @pyrex @mhoye yes well thatโ€™s a lousy metric by a lot of standards.