8 Commits

Author	SHA1	Message	Date
Brian Gianforcaro	df04283d61	LibCore: Make Account::authenticate take a SecretString ... To encourage users to use the SecretString API, change the API so that Account::authenticate only accepts a SecretString.	2021-09-12 16:36:52 +02:00
Brian Gianforcaro	9e667453c7	LibCore: Make get_password return SecretString instead of String ... We shouldn't let secrets sit around in memory, as they could potentially be retrieved by an attacker, or left in memory during a core dump.	2021-09-12 16:36:52 +02:00
pyunbiwi	68d07320cf	Userland: Add as-user execution to the pls utility ... Commands may be executed as a specific user by passing the user's UID to the '-u' flag in pls.	2021-08-16 21:16:30 +02:00
Andreas Kling	597539aa4c	pls: Fix typo in TERM environment variable propagation	2021-05-30 23:13:52 +02:00
Andreas Kling	33f2eeea4a	pls: Drastically simplify this program ... Since this program is setuid-root, it should be as simple as possible. To that end, remove `/etc/plsusers` and use filesystem permissions to achieve the same thing. `/bin/pls` is now only executable by `root` or members of the `wheel` group. Also remove all the logic that went to great lengths to `unveil()` a minimal set of filesystem paths that may be used for the command. The complexity-to-benefit ratio did not seem justified, and I think we're better off keeping this simple. Finally, remove pledge promises the moment they are no longer needed.	2021-05-30 23:09:37 +02:00
Brendan Coles	340cecaf80	pls: Unveil search paths with browse permissions	2021-05-30 10:41:25 +01:00
Jesse Buhagiar	d44e2c9ad9	Userland: Check sudoers file perms and owner in pls ... As per comment found in #6319 by @bcoles, `pls` should check the permissions and owner of the sudoers file to ensure that it hasn't been compromised.	2021-05-29 22:33:12 +04:30
Jesse Buhagiar	82b48d867d	Userland: Implement pls, a sudo clone	2021-05-29 22:33:12 +04:30