In early days, many/most people also read their email on terminals (or printers) with 80-column lines, so breaking lines at 72-ish was considered good email etiquette (to allow for later quoting prefix ">" without exceeding 80 characters).

One of the technical marvels of the day were mail and usenet clients that could properly render quoted text from infinite, never ending flame wars!

Why should something like sudo not be "done" after 30 years?

Sudo is one of the poster children for creeping featuritis, to the point that the sudoers man page is a meme ("Don't despair if you are unfamiliar with EBNF ...")

Even OpenBSD gave up and implmented their own simplified replacement (doas).

> Why should something like sudo not be "done" after 30 years?

Because new needs arise over time. For example, when I started in IT the "sudoedit" functionality was not present and so allowing someone to do "sudo vi …" would allow them breakout of the editor when it was running as root.

With sudoedit you can give people permissions to edit particular files with elevated permissions.

> Even OpenBSD gave up and implmented their own simplified replacement (doas).

They did not "give up": they found they needed only much simpler functionality shipped in the base OS. For example, sudo has functionality to talk to LDAP (which I've used at multiple jobs over the years), but is not needed for a local-only box. Once you need centralized account and privilege management, doas becomes much less useful.

> sudo has functionality to talk to LDAP

That is scary! I may need to look more at openbsd

> That is scary! I may need to look more at openbsd

Very useful when you're running fleets of systems that are more pet than cattle.

Ubuntu/Debian are moving to sudo using SSS to talk to LDAP (versus the current sudo-ldap package).

There's a Linux port of doas named OpenDoas

Distros come with sudo. Scripts assume sudo. Complexity exists there.

solved long ago. https://github.com/jirutka/doas-sudo-shim/

so do I uninstall sudo from my distro? What do I do on upgrade? This shim is available from alpine package manager, can I get it anywhere else?

The purpose is to allow users access by ldap criteria like group so the sodoers file need not be edited on each and every server.

https://www.sudo.ws/docs/man/sudoers.ldap.man/

Yeah, that’s not something I would expect a core until to do.

I would expect another system to query ldap.

Let's be honest, though. If you designed a new sudo in a system with doas(1) it would look nothing like modern sudo.

I can't remember the name, but I read about a rust project a few months ago which claimed that even doas had too much feature creep.

> I can't remember the name, but I read about a rust project a few months ago which claimed that even doas had too much feature creep.

Features are added because people cannot do X and want to, and so it is added.

I'm happy to have a spectrum of privilege-escalation utilities of varying capabilities, but just because one person does not need certain functionality (like talking to LDAP) does not mean I don't.

Different platform but the simplest mainframe utility IEFBR14, a noop process to trigger JCL events started as one instruction. Then two. Then debate started about which machine instruction should be used to set the return code to zero …

Hence IEFBR14A

Bugfixes and security vulnerabilities, mostly. So long as fallible humans make fallible hardware running fallible software that in turn executes and/or compiles fallible code, there will always be a need for continued development of critical tooling and packages.

On a long enough timeline, those fixes become fewer and less frequent as the codebase improves, but there is no "done" in software unfortunately. Hell, entropy itself means nothing is ever done, just in an ever-changing state.

Is it really creeping, though? Pretty sure I first saw the EBNF in the man page more than 20 years ago, it's just how that generation learned to write and discuss parsers. (What I'm getting at is that even if it is, that isn't a sign of it.)

Of course, 20+ years ago a big feature was platform compatibility, and since then we've gone from 10+ to 2ish, so if it's not explicitly enabling retrocomputing, it should be getting simpler, right?

Even if sudo itself never changed, the system around it changes pretty drastically. I agree the scope of the tool should be smaller and it violates the Unix philosophy (whatever that is worth these days)

This community and others like it are so weird in that if they see something as stable as sudo but without recent commits, rather than conclude that it's solid and doesn't need further changes, they see it as some kind of a problem and want to switch to something that's seen major changes in the last week.

Maybe that's somehow related to why so many companies are shoving AI into a bunch of stuff that doesn't need it. Gotta keep everything on the hype train. Working and fulfilling people's needs is no longer good enough.

Because environments change, it hasn't been immutable.

Just curious, why did you use "dentist" in your analogy over any other profession?

Similarly sudo-rs and doas-rs exist now.

I'm not sure what can be gained for further development of the OG c sudo, add security patches of course.

But fund adding yet another feature 99.9% of users will never use? I can't fathom the justification for that. Just adding attack surface at this point.

Rightly both doas and the *-rs drops ins intend to drop most of those unnecessary features.

Are you saying you would be using something that fills the same critical role as sudo even if it had not received any updates in a decade or more? Because that sounds insane

Absolutely. Even if there's an electrical "convenience" mode of operation, locks as well as handles/latches to open the door from inside or outside should be able to be operated mechanically in case of loss of power, via obvious and accessible handles or levers.

This also from the group that likes to preach about "premature optimization"

I've tried a couple of these "better" shoe tying knots and have never had the patience to learn them to the point they become habitual. So I can spend 2 seconds tying a shoelace the way I learned when I was 5 years old, or I can spend 5 minutes fumbling with some other knot. I go with what works for me. Optimizing the time I spend tying my shoes just isn't anywhere on the radar of things that would have a worthwhile ROI.

I've been 100% slip-ons for years.

There are laces designed to convert a shoe meant for regular laces into a slip-on, such as https://www.locklaces.com/

I've used them and they worked pretty well.

How long have you been developing code for others to use?

Rule number one is that users don't read documentation.

Who are you making software for? That matters.

General public? Yeah, assume idiotic.

Developers? If you can't read docs then you can't do your job.

I don't have much confidence in LLMs replacing devs, but if the dev is so arrogant that they think they're too good for documentation and if they have to read is too complicated, then yeah I believe AI can already replace that person. They were just a warm body, not a dev.

robocopy! Wow, blast from the past. Used to use it all the time when I worked in a Windows shop.

I am using robocopy right now on a project. The /MIR option is extremely useful for incrementally maintaining copies of large local directories.

Seems to be their "Watson."

The line of code that saves the most time is the one you don't write.

It's all contextual. Sometimes, particularly when it comes to modern frontends, you have inescapable boilerplate and lines of code to write. Thats where it saves time. Another example is scaffolding out unit tests for series of services. There are many such cases where it just objectively saves time.

Reason went out of fashion like 50 years ago, and it was never really in vogue.

Terms of use typically disclaim all liability.