The Story
The sudo and su utilities mediate a critical privilege boundary on just about every open source operating system that powers the Internet. Unfortunately, these utilities have a long history of memory safety issues.
By rewriting sudo and su in Rust we can make sure they don't suffer from any more memory safety vulnerabilities. By leaving out less commonly used features we can reduce attack surface.
What We've Done
In December of 2022 we funded a joint development effort between Tweede Golf and Ferrous Systems to rewrite sudo and su in Rust.
As of August 2023, the first stable release is out, give it a shot!
What's Next
We're currently raising funding for additional enterprise features.
Links
From our Blog
The First Stable Release of a Memory Safe sudo Implementation
Our Rust rewrite of sudo is ready for use.
Bringing Memory Safety to sudo and su
We are reimplementing sudo and su utilities in Rust.