Is this more secure than secureblue’s run0?
run0(systemd) written in C, while sudo-rs is written in rust.
see I am not sure if memory-safety is the biggest issue in sudo design. I find the f... | Hacker News for more info
This isn’t just about shipping a new binary. It’s about setting a direction. We’re not abandoning C, or even rewriting all the utilities ourselves, but by choosing to replace one of the most security-critical tools in the system with a memory-safe alternative, we’re making a statement: resilience and sustainability are not optional in the future of open infrastructure.
We’ve got a strategy for migrating the default implementation of
coreutilsandsudoin Ubuntu 25.10 which will enable a seamless revert in cases where that is desired. Whilesudo-rswill be the default in 25.10, the originalsudowill remain available for users who need it, and we’ll be gathering feedback to ensure a smooth transition before the 26.04 LTS.
Additionally, we’ve begun investigating the feasibility of providing SequoiaPGP and using it in APT instead of GnuPG. SequoiaPGP is a new OpenPGP library with a focus on safety and correctness, written in Rust. The GnuPG maintainers have recently forked the OpenPGP standard and are no longer compliant with it. Sequoia provides a modern alternative to GnuPG with strict behavior, and is already used in various other systems.
This is good. Not sure why they say they aren’t abandoning C, it’s exactly what they are doing, which is good IMO.
Great that they are sponsoring those projects and also contributing to the upstream sudo.
Sudo-rs currently is targeted for FreeBSD and Linux-based operating systems only.
I hope they are able to expand that in the future.
I found another rewrite of sudo, but it probably won’t be as mainstream
please is another rewrite of sudo, and they have not said they will be limited to just those two OSs. It’s also been audited too, and vulnerabilities seem to be addressed. However, activity and development has slowed down as of recent.