RootAsRole
A memory-safe and security-oriented alternative to sudo/su commands (by LeChatP)
sudo_pair
Plugin for sudo that requires another human to approve and monitor privileged sudo sessions (by square)
RootAsRole | sudo_pair | |
---|---|---|
3 | 4 | |
123 | 1,231 | |
- | 0.1% | |
8.5 | 0.0 | |
5 days ago | 9 months ago | |
Rust | Rust | |
GNU General Public License v3.0 only | Apache License 2.0 |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
RootAsRole
Posts with mentions or reviews of RootAsRole.
We have used some of these posts to build our list of alternatives
and similar projects.
-
RootAsRole, a secure alternative to sudo/su on Linux systems is now entierly in Rust!
My project RootAsRole from C language is now entirely rewritten in Rust. https://github.com/LeChatP/RootAsRole
- RootAsRole: A secure alternative to sudo/su using principle of least privilege
-
Mapping Capabilities Linux, Reverse-engineering, SAST
Currently, the solution for administrators is to use this eBPF which could detect capabilities asked by program. But this eBPF returns false-positives. With more context (e.g. the name of a syscall or the context of caller symbol), this eBPF could filter impertinent privileges asks, and simplify configuration of privileges for administrators.
sudo_pair
Posts with mentions or reviews of sudo_pair.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-11-12.
- How to enforce 4-eyes administration
-
`kindly`: a simplistic (and hopefully educational) implementation of a set-user-ID-root program (think mini `sudo`) for Linux
I actually wrote and open-sourced a library for writing these plugins in Rust as well as a plug-in that implements dual control, allowing a second person to watch and monitor the session.
- sudo_pair is a plugin for sudo that requires another human to approve and monitor privileged sudo sessions.
- Sudo_pair – 2FA for individual `sudo` commands
What are some alternatives?
When comparing RootAsRole and sudo_pair you can also consider the following projects:
ssu - Extremely simple su utility
rocket_auth - An implementation for an authentication API for Rocket applications.
please - Really tiny sudo replacement
x8 - Hidden parameters discovery suite
utils - Utility crates used in RustCrypto
Fedora-KDE-Yubikey-U2F-2FA-Logins-Guide - Guide to setup a Yubikey for Fedora KDE as 2FA using U2F for the SDDM login screen, lock screen, sudo and su.
openidconnect-rs - OpenID Connect Library for Rust
please - please, a sudo clone
kindly - kindly is a simple Rust implementation of a set-user-ID-root program, similar to sudo but in a much reduced way.
pam_rssh - Remote sudo authenticated via ssh-agent
pam - Safe Rust API to the Linux Pluggable Authentication Modules (PAM)