escl is a program for elevating privileges to root. As a regular Linux desktop user and programmer, I have very little use for the intricate bloat of sudo, and while doas is better, I felt it could still be more minimal. This program only implements two things:
- Choosing which users are allowed to use it, and which passwords they can authenticate with
- Giving those users root privileges when run
The point of escl is that it is utterly dependency-free (except for certain POSIX standard functions and libcypt, which should be available on effectively every Linux system ever). Its allowed users and passwords are stored separately from all other programs, so you can easily drag-and-drop it in and out of any system without being afraid of breaking something.
Software / system dependencies are:
- A shell environment for execution
- To build the program, run
make - To install the program, run
make install - To uninstall all program files from the system, run
make uninstall
Immediately following installation:
- Login as root
- Give users permission to use escl with
escl -ua <user1> -ua <user2> ... - Add a password for permitted users to authenticate with using
escl -pa
When usage is actually needed:
- Run the command you wish to execute, prefixed by
escl. For example, a non-root user may runescl pacman -Syuin a similar way to how they would runsudo pacman -Syu - Enter one of the added passwords
Security / maintenance:
- To revoke users' abilities to use escl, run
escl -ur <user1> -ur <user2> ... - To remove a password, run
escl -prand enter the password you wish to revoke - To regenerate the salt and hash used for storing a password, simply remove it
using
escl -prand readd it usingescl -pa
I am not accepting pull requests, this program is entirely for my own usage. Feel free to fork this project and make your own version.