Bug 258636 - [change request] ports-mgmt/porttools: Make sudo optional
Summary: [change request] ports-mgmt/porttools: Make sudo optional
Status: New
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Steven Kreuzer
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2021-09-20 18:11 UTC by Jason W. Bacon
Modified: 2021-09-20 18:11 UTC (History)
0 users

See Also:
bugzilla: maintainer-feedback? (skreuzer)


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Jason W. Bacon freebsd_committer freebsd_triage 2021-09-20 18:11:31 UTC
Might you consider not having sudo as an unconditional dependency?

As you're probably aware, sudo has had some serious security holes, including one that permitted root access to any user on a system where sudo was installed.

https://www.sudo.ws/security.html

Temporary root access for individual commands can also be provided using

su -m root -c 'command args'

I imagine some people may prefer to use sudo despite the risks, so the main thing is simply allowing porttools to be used without having sudo installed if one so chooses.

That could be as simple as dropping the sudo dependency and issuing an error message when it's needed and not installed.  Those who want to use sudo with port commands can easily install it separately.