Alexander Hall <alexander@beard.se> writes:
>>There's a good chance i'm misunderstanding, but doesn't this run
>>into
>> the same issue? Namely, that (as far as i'm aware) it's not
>> possible
>> to specify that a doas-permitted command be allowed to run with
>> arbitrary arguments (or range of arguments), rather than only
>> the
>> arguments specified in doas.conf?
>
> Just leaving out the "args ..." from the config should
> accomplish that.
Not on 7.1, unless i'm doing something wrong?
/etc/doas.conf:
permit nopass alexis as root cmd /sbin/wsconsctl
$ /sbin/wsconsctl display.brightness=50
wsconsctl: /dev/ttyC0: Permission denied
Hence the OP's question, and my suggested kludge.
Alexis.
No comments:
Post a Comment