rudo-0.8.5 is not a library.
Visit the last successful build:
rudo-0.6.4
Rudo
Description
Rudo "Rust User do" allows a system administrator to give certain users the ability to run some commands as root or another user while logging all commands, and it's arguments.
Rust version and operating system support
Compile with rust 1.43
and later, on ubuntu-20.04
and macos-10.15
, as test in CI. 2021-04-17
Security rules apply to Rudo via clippy and rust lints
- Rule LANG-NAMING of anssi
with
nonstandard_style
\ - C-METADATA of rust api guideline
with
clippy::cargo_common_metadata
\ - Rule LANG-NOPANIC of anssi
with
clippy::expect_used
,clippy::unwrap_in_result
andclippy::unwrap_used
\ - Rule LANG-ARRINDEXING of anssi
with
clippy::get_unwrap
andclippy::indexing_slicing
\ - MISRA-C:2004 Rule 14.10 of MISRA with
clippy::else_if_without_else
\ - Rule MEM-FORGET
and Recommendation MEM-FORGET-LINT
of anssi with
clippy::mem_forget
\ - Rule LANG-ARITH of anssi
with
clippy::integer_arithmetic
Security advisory
Required serde_yaml
>=0.8.4
because
of RUSTSEC-2018-0005
Rudo as use serde_yaml
version 0.8.17
at its debut, so it has never been affected by it
Package
https://copr.fedorainfracloud.org/coprs/remilauzier/rudo/
Functionality
- You can give Rudo a command to execute like
rudo some-command with-args
- You can invoke a shell with
rudo -s
orrudo --shell
- You can change the user to impersonate with
rudo -u some-user
orrudo --user some-user
- You can edit document with the editor specify in your environment variable with
rudo -e some-document
orrudo --edit some-document
- You can log debug journal with
rudo -d
orrudo --debug
- You can start the user greeting with
rudo -g
orrudo --greeting
- You can log debug or info messages to
journald
on Linux or tooslog
on macOS
Configuration
- The config file is in YAML and must be at
/etc/rudo.conf
or it will be created - Invalid file will be REMOVE and REPLACED with default
- You can change the user to impersonate
- You can change the group the user must be member to have authorization
- You can remove the password obligation at your own risk
- You can remove the greeting of the user
- You can decide which user is authorized to use Rudo
Problem
You need to change the owner of the binary to root to make it work, except for the copr package
sudo chown root:root
sudo chmod 4755
Warning
No security audit was perform on Rudo