I think the point is that doas and sudo are generally worse because they conflate the user, the dog developer and administrator into one account.why should we accept it ?
it's bad practice.
if your doing something you shouldn't, someone should tell you.
there's no reason to be root for temporary tasks, and if it's not, then your doing it wrong.
In my opinion the opposite approach would be better. Rather than adding more privilege to a user account by means of a bunch of setuid programs, what one really needs is a security model that allows a user to set up sandboxing and limited execution environments without needing superuser powers.
Statistics: Posted by ejolson — Wed May 01, 2024 3:15 am