Josh Aas
Jul 17, 2024
Today we're pleased to announce that an open source memory safe implementation of sudo/su — sudo-rs — has a new long-term home at the Trifecta Tech Foundation.
ISRG's Prossimo project set out to develop a strategy, raise funds, and select a contractor for a memory safe sudo/su implementation in early 2022. We did this because sudo and su are critical utilities managing control of the user privilege boundary on most Linux systems. The original utilities are written in C and have a history of memory safety vulnerabilities, a class of issues that critical system software should not suffer from.
During 2022 we made a plan and selected a joint team from Tweede golf and Ferrous Systems as the contractors. Funding was generously provided by Amazon Web Services. The first release was made in August 2023. A third party security audit was completed in September of 2023.
There are software packages for Debian, Ubuntu and Fedora. It's also available on crates.io.
We recently decided that Trifecta Tech Foundation would become the long-term maintainer of sudo-rs. It was founded by the team from Tweede golf, and since they worked on sudo-rs and we're big fans of their approach to open source, it was an easy decision to make on our end.
Trifecta Tech Foundation aims to provide stability to the sudo-rs project and support its maintainers. Their work will be supported by soliciting contracts and sponsorship for features and maintenance.
If you're using sudo (who isn't?) you can help make your systems and the Internet as a whole safer by becoming an adopter of sudo-rs and providing feedback. Contact Trifecta Tech Foundation if you're interested!
Support Our Work
ISRG is a 501(c)(3) nonprofit organization that is 100% supported through the generosity of those who share our vision for ubiquitous, open Internet security. If you'd like to support our work, please consider getting involved, donating, or encouraging your company to become a sponsor.