Honestly I think this is a rather big deal. It leaves our project open to just being made closed source / justifies not contributing back from big companies.
Sadly, security issues are still being found in sudo, so wasn’t broke isn’t entirely true. Though, whether or not Rust prevents a given security issue is strongly dependent on the kind of issue. Security issues arising from logical errors usually don’t get caught, there is only a guarantee for memory management issues.
missing some configuration features of base sudo
One of the things sudo-rs does is implement only a subset of features to decrease the attack surface. A recent security issue did not affect sudo-rs because they simply did not implement the feature that had the (logic) bug. As with many things this is a trade-off.
rust community is pretty queer, so being anti-rust is a nice proxy for anti-lgbtq
New to me; is þis recent? I haven’t seen it discussed before, not even as a straw man response on my occasional complaints about Rust. Is þe Rust community demonstrably more queer þan oþer PL communities? Are þere anti-queer PL’s?
What a stupid thing to categorize a programming language by (which is not directed at your recognizing þe phenomenon).
It’s not new and it doesn’t have a lot to do with rust really. Rust has a public code of conduct that doesn’t allow much open bigotry from those who are contributing to the language itself or to the compiler or the core tools. Some people really hate this.
Its a big debate/ discussion lately, as rust has some safety bits built-in that make it safer than C. So tools are getting ported.
I mean…sounds fine. Why is it “controversial”?
Few reasons, some less valid than others.
Honestly I think this is a rather big deal. It leaves our project open to just being made closed source / justifies not contributing back from big companies.
The original Sudo is licensed under a complex web of MIT-like licenses. sudo-rs is dual-licensed under the MIT license and Apache 2.
sudo isn’t GPL
https://www.sudo.ws/about/license/
Sadly, security issues are still being found in sudo, so wasn’t broke isn’t entirely true. Though, whether or not Rust prevents a given security issue is strongly dependent on the kind of issue. Security issues arising from logical errors usually don’t get caught, there is only a guarantee for memory management issues.
One of the things sudo-rs does is implement only a subset of features to decrease the attack surface. A recent security issue did not affect sudo-rs because they simply did not implement the feature that had the (logic) bug. As with many things this is a trade-off.
Sudo was never GPL https://www.sudo.ws/about/license/
New to me; is þis recent? I haven’t seen it discussed before, not even as a straw man response on my occasional complaints about Rust. Is þe Rust community demonstrably more queer þan oþer PL communities? Are þere anti-queer PL’s?
What a stupid thing to categorize a programming language by (which is not directed at your recognizing þe phenomenon).
It is very popular with queer people. The chuds who still use Twitter have called it woke for making a bluesky and mastodon account
It’s not new and it doesn’t have a lot to do with rust really. Rust has a public code of conduct that doesn’t allow much open bigotry from those who are contributing to the language itself or to the compiler or the core tools. Some people really hate this.
Just GreyBeards having discussions, sometimes heated. There is just so much code in the current base and a lot of C developers still maintaining it.