Demi Marie Obenour writes:
What would break if sudo was replaced by an IPC service that ran
sudo as if it was setuid root, without it actually being setuid root?
I imagine the hardest part would be TTY handling, as not being able
to Ctrl-C a command launched by sudo is a rather poor user experience.
File descriptors can be sent across filesystem sockets, this can be done.
Once that's over the fence, perusing the relevant man pages suggests a
combination of setpgid and tcsetpgrp should get the job done.
But, still: every additional line of code written to implement something is
an additional line with a potential bug. In a security-sensitive context, it
won't surprise me if trying to chase the separated server process unicorn
ends up creating more bugs than a simple suid program ever had in its
decades' of existence.