Shipped in Windows 11 Insider Preview Build 26052. https://www.tiraniddo.dev/2024/02/sudo-on-windows-quick-rundown.html claims it has a big security problem that makes the program accept calls to elevate from anywhere once first run

Edit:

  1. The security problem has been internally fixed and will be available in the next release
  2. It’s not just an alias for ‘runas’. It seems to be able to configurably block user input for sudo’d commands, retain the existing environment, ditch it and open a new window, and remember that you’ve sudo’d in the last minute or so.
  3. It brings up UAC instead of having you input the password
  • Pilgrim@beehaw.org
    link
    fedilink
    arrow-up
    17
    ·
    11 months ago

    I would say “hey that’s just copying” but Microsoft is legally incapable of being wrong, or noticing irony so I’ll leave it be

    • OmnipotentEntity@beehaw.org
      link
      fedilink
      arrow-up
      17
      ·
      11 months ago

      If I’m understanding this correctly, it’s not even copying. It’s apparently just a wrapper for the built-in runas command that’s been there since Windows 2000.

      • Mike Griese@mastodon.social
        link
        fedilink
        arrow-up
        9
        ·
        11 months ago

        @OmnipotentEntity @Pilgrim it’s actually not just a wrapper for runas. There’s a lot of other plumbing here to get the console handle you’re actually using plumbed to the target application. That’s the magic that lets you actually interact with the elevated process in the same terminal.

        With runas, the target application is just stuck in a separate console window (gross)

        • OmnipotentEntity@beehaw.org
          link
          fedilink
          arrow-up
          4
          ·
          11 months ago

          So please forgive me if this is a rather naive question. I haven’t seriously used Windows in nearly 15 years.

          I seem to recall runas being a lot like su, in that you enter the target user’s credentials, rather than your own as in sudo. This works because sudo is a setuid executable, and reads from configuration to find out what you’re allowed to do as the switched user.

          Is the behavior of windows sudo like unix su or unix sudo with regard to the credentials you enter? Can you limit the user to only certain commands?

      • PenguinCoder@beehaw.org
        link
        fedilink
        English
        arrow-up
        6
        ·
        11 months ago

        Exactly. Windows already has this functionality with runas and this implantation doesn’t improve on it at all.

  • nothacking@discuss.tchncs.de
    link
    fedilink
    arrow-up
    1
    ·
    edit-2
    11 months ago

    This would be real nice if this let you easly run commands as SYSTEM or TrustedInstaller from a script, not just as Admin. Not only can Admin be reached from the “Run as Admininstrator” menu option, is actualy quite limited for messing around with system files. For the most part, Admin lets you mess with system settings/registry, and user files, but not with a lot if system/application files without TAKEOWNing everything.