#sudo-rs — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #sudo-rs, aggregated by home.social.
-
💬 sudo-rs Changes Default Password Prompt Behavior
「 Now, when users type their password during authentication, the terminal displays asterisks (*) instead of staying visually silent. The sudo-rs maintainers describe the change as a usability improvement 」
#sudors #sudo #rust #opensource
https://linuxiac.com/sudo-rs-changes-default-password-prompt-behavior/ -
I was reading some discussion on the sudo-rs now showing asterisks.
I don't hate that it does. I don't find that the rational to keep the typing hidden is really that strong. It reads like making a case for security by obscurity. Something which we all in the #foss world would already agree is a flaw.
Most traditions outlive their usefulness and assumptions that made them. Maybe this says we need more than just long passwords in systems that use sudo.
-
FYI: The sudo-rs bug of leaking passwords on timeout is a general problem of line buffered stdin streams.
The `read` builtin suffers from the same problem.
https://github.com/trifectatechfoundation/sudo-rs/security/advisories/GHSA-c978-wq47-pvvw
-
"sudo-rs Affected By Multiple Security Vulnerabilities - Impacting Ubuntu 25.10"
-
🦀 sudo-rs Is Now The Default sudo Of Ubuntu 25.10 - Phoronix
-
engang for hundre år siden, da jeg først begynte med #Linux, så var liksom ikke #sudo en greie. Og så ble det det, og en del av oss himlet litt med øynene av "sudo su" og sånt, men så ble det etter hvert ganske vanlig.
Men mellom det @pid_eins har skravlet om rundt #run0, og @trifectatech sin #sudors, så er det kanskje på tide å gå tilbake til å ikke ha vanilla sudo på maskina igjen?
https://www.stratascale.com/vulnerability-alert-CVE-2025-32463-sudo-chroot
-
Sudo-rs make me a sandwich, hold the buffer overflows – Source: go.theregister.com https://ciso2ciso.com/sudo-rs-make-me-a-sandwich-hold-the-buffer-overflows-source-go-theregister-com/ #rssfeedpostgeneratorecho #TheRegisterSecurity #CyberSecurityNews #TheRegister #Sudors
-
Ubuntu 25.10 will include sudo-rs
Ubuntu 25.10 Questing Quokka will include sudo-rs by default as part of a plan to use more Rust-based core system components, such as the Rust CoreUtils “uutils” that will replace the standard GNU CoreUtils written in C. According to the MemorySafety blog, both sudo and su have been rewritten in Rust to ensure that they are memory safe, in comparison to the standard ones that are written in the 1980s.
Earlier, the Rust-based CoreUtils is used as part of a plan that allows Canonical to migrate from the older CoreUtils to the newer one to ensure memory safety. Although there is a drawback involving uutils’ bigger size in comparison to the GNU version, memory safety is more important. Because of this downside, it’s possible that the Docker containers may still use the traditional GNU CoreUtils.
Currently, sudo-rs is maintained by Trifecta Tech Foundation, which announced that Canonical confirmed the sudo-rs migration. This non-profit organization has also announced that this move was “part of a broader effort by Canonical to improve the resilience and maintainability of core system components.”
All this is part of the broader plan that will make sure that Ubuntu uses the Rust infrastructure.
#2510 #news #Questing #QuestingQuokka #Quokka #sudo #sudoRs #Tech #Technology #Ubuntu #Ubuntu2510 #Ubuntu2510Questing #Ubuntu2510QuestingQuokka #Ubuntu2510Quokka #UbuntuLinux #update
-
Die GNU Core Utilities (kurz Coreutils) stellen essenzielle Linux-Programme wie ls oder cp bereit. Schon in der übernächsten Ubuntu-Version sollen sie allerdings gegen eine in der Programmiersprache Rust geschriebenen Neuimplementierungen weichen.#Coreutils #sudo-rs #Ubuntu #uutils
Ubuntu möchte GNU Core Utilities durch Rust-Alternativen ersetzen - LinuxCommunity
