On Thu, Feb 04, 2021 at 05:52:09AM +0000, James Cook wrote: [...]
> > > > If you are going to allow pkg_add with "nopass" you might just as well > > > > write "permit nopass myuser". An account which can run pkg_add as root > > > > has full control of the system. > > > > > > I don't have strong opinions about that. My point is just that the > > > current documentation left me with a setup that didn't work. > > > > > > How about recommending keepenv instead, if that's better? > > > > I think sthen@ may have been a little too subtle about what a giant > > footgun your proposal is. > > > > "permit nopass myuser" is equivalent to myuser being root and you might > > as well run everything as root then and toss out all security > > considerations that come from logging in as a non-root user. > > > > This has no place in the FAQ in my opinion. [...] > Of course, now I know how to solve the error. But I thought I'd found a > bug in the documentation, because the documentation led me to a bad > setup. > > My suggested doas.conf comes (almost) directly from the existing > documentation for PORTS_PRIVSEP. I think you did find an inconsistency in the documentation and thanks for raising it. Just would like to point out that commit [1] happened in response to the discussion of the issue. [1] https://marc.info/?l=openbsd-cvs&m=161247673822783&w=2
