starred/mkcert
1
0
Fork 0
mirror of https://github.com/FiloSottile/mkcert.git synced 2026-04-25 13:36:02 +03:00
Code Issues 165 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #236] Automatic sudo fallback is scary! #151

New issue
Open
opened 2026-02-25 22:32:44 +03:00 by kerem · 1 comment
kerem commented 2026-02-25 22:32:44 +03:00
Owner
Copy link

Originally created by @mgeorge on GitHub (Jan 16, 2020).
Original GitHub issue: https://github.com/FiloSottile/mkcert/issues/236

If the user wants to give mkcert the ability to run as root via sudo then they should explicitly do so.

Having a process fallback to running via sudo automatically itself is very scary. It basically allows mkcert to piggy back root privileges of the back of another unrelated command's sudo timeout window.

This is pretty ripe for abuse. It is also very surprising when you run mkcert without sudo and discover that has somehow magically managed to write to your system trust store. This is exactly what happened to me, and led to me trying to figure out how this happened.

Printing a message saying "That operation requires root - rerun with sudo" should be all that is needed.

Originally created by @mgeorge on GitHub (Jan 16, 2020). Original GitHub issue: https://github.com/FiloSottile/mkcert/issues/236 If the user wants to give mkcert the ability to run as root via sudo then they should explicitly do so. Having a process fallback to running via sudo automatically itself is very scary. It basically allows mkcert to piggy back root privileges of the back of another unrelated command's sudo timeout window. This is pretty ripe for abuse. It is also very surprising when you run mkcert without sudo and discover that has somehow magically managed to write to your system trust store. This is exactly what happened to me, and led to me trying to figure out how this happened. Printing a message saying "That operation requires root - rerun with sudo" should be all that is needed.
kerem commented 2026-02-25 22:32:44 +03:00
Author
Owner
Copy link

@renatofrota commented on GitHub (Feb 11, 2024):

This is actually wonderful. And a great reminder that you must review (or trust) the code you run on your machine, no matter you are adding sudo in front of it (manually) or not.

If you do not trust someone's code (hint: mkcert), do not run it - or fully inspect it before doing so.

<!-- gh-comment-id:1937458937 --> @renatofrota commented on GitHub (Feb 11, 2024): This is actually wonderful. And a great reminder that **you must review** (or trust) the code you run on your machine, no matter you are adding sudo in front of it (manually) **or not**. If you do not trust someone's code (hint: mkcert), do not run it - or fully inspect it before doing so.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
v1.4.4
v1.4.3
v1.4.2
v1.4.1
v1.4.0
v1.3.0
v1.2.0
v1.1.2
v1.1.1
v1.1.0
v1.0.1
v1.0.0
v0.9.1
v0.9.0
Labels
Clear labels   
TLS stack issue

   
Windows

   
bug

   
duplicate

   
duplicate

   
enhancement

   
help wanted

   
help wanted

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question

   
root store

   
waiting for info
No labels
TLS stack issue
Windows
bug
duplicate
duplicate
enhancement
help wanted
help wanted
pull-request
question
question
root store
waiting for info
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/mkcert#151
No description provided.