This is also a good opportunity to harden all /etc/sudoers.d exceptions.
Plan:
- harden all /etc/sudoers.d exceptions
- keep the /etc/sudoers.d for now even should we decide to no longer install sudo by default (to make it easier to go back to sudo, should a blocker come up)
- implement /etc/doas.conf configuration generator in security-misc
- add the /etc/doas.conf.d snippets
- maybe port to doas
You did an amazing analysis of Kicksecure, Whonix /etc/sudoers.d snippets!
Could you please also investigate the already existing /etc/sudoers.d exceptions shipped by other projects such as Qubes? Because these will also need to be considered before we can port to doas.
sudo ls -la /etc/sudoers.d
The configuration generator would need to be atomic. Generate a variable first, then write with 1 command in a atomic way using sponge.
Also the configuration generator should not overwrite a maybe already existing user generated configuration. One that lacks our auto generated comment.
No problem. Hardened just now in git.
Deleted.
Deleted.
Not a blocker. All commented out by default. Not a priority. If a user urgently needs this and it’s not possible with doas, the user could install sudo.