Doas/ru: Difference between revisions

Revision as of 15:13, 11 August 2024

doas is a utility to execute commands as a different user, typically the super user. It is often installed as a replacement for sudo, due to its ease of configuration and greater simplicity.

It is not recommended to use doas due to compatibility issues with sudo.

Flake based configurations require git to be installed as a system package in order to rebuild.

Настройка

The following configuration will give the user foo the ability to execute commands as the super user via doas, while disabling the sudo command.

security.sudo.enable = false;
security.doas.enable = true;
security.doas.extraRules = [{
  users = ["foo"];
  # Необязательно, сохраняет переменные окружения при выполнении команд
  # например, сохраняет ваш NIX_PATH при применении вашего конфига
  keepEnv = true; 
  persist = true;  # Необязательно, не запрашивать пароль в течение некоторого времени после успешной аутентификации
}];

@@ Line 13: / Line 13: @@
 The following configuration will give the user <code>foo</code> the ability to execute commands as the super user via <code>doas</code>, while disabling the <code>sudo</code> command.
 </div>
-<div lang="en" dir="ltr" class="mw-content-ltr">
 <syntaxhighlight lang="nix">
+security.sudo.enable = false;
 security.doas.enable = true;
-security.sudo.enable = false;
 security.doas.extraRules = [{
    users = ["foo"];
-   # Optional, retains environment variables while running commands
+   # Необязательно, сохраняет переменные окружения при выполнении команд
-   # e.g. retains your NIX_PATH when applying your config
+   # например, сохраняет ваш NIX_PATH при применении вашего конфига
    keepEnv = true;
-   persist = true;  # Optional, don't ask for the password for some time, after a successfully authentication
+   persist = true;  # Необязательно, не запрашивать пароль в течение некоторого времени после успешной аутентификации
 }];
 </syntaxhighlight>
-</div>
 [[Category:Applications]]
 [[Category:Security]]