3 commits

Author	SHA1	Message	Date
Andreas Kling	33f2eeea4a	pls: Drastically simplify this program ... Since this program is setuid-root, it should be as simple as possible. To that end, remove `/etc/plsusers` and use filesystem permissions to achieve the same thing. `/bin/pls` is now only executable by `root` or members of the `wheel` group. Also remove all the logic that went to great lengths to `unveil()` a minimal set of filesystem paths that may be used for the command. The complexity-to-benefit ratio did not seem justified, and I think we're better off keeping this simple. Finally, remove pledge promises the moment they are no longer needed.	2021-05-30 23:09:37 +02:00
Jesse Buhagiar	d44e2c9ad9	Userland: Check sudoers file perms and owner in pls ... As per comment found in #6319 by @bcoles, `pls` should check the permissions and owner of the sudoers file to ensure that it hasn't been compromised.	2021-05-29 22:33:12 +04:30
Jesse Buhagiar	82b48d867d	Userland: Implement pls, a sudo clone	2021-05-29 22:33:12 +04:30