|DOAS(1)||General Commands Manual||DOAS(1)|
doasutility executes the given command as another user. The command argument is mandatory unless
The user will be required to authenticate by entering their password, unless configured otherwise.
By default, a new environment is created. The variables
USER and the
umask(2) are set to values
appropriate for the target user.
DOAS_USER is set to
the name of the user executing
doas. The variables
inherited from the current environment. This behavior may be modified by the
config file. The working directory is not changed.
The options are as follows:
- Parse and check the configuration file config, then
exit. If command is supplied,
doaswill also perform command matching. In the latter case either ‘permit’, ‘permit nopass’ or ‘deny’ will be printed on standard output, depending on command matching results. No command is executed.
- Clear any persisted authentications from previous invocations, then immediately exit. No command is executed.
- Non interactive mode, fail if the matching rule doesn't have the
- Execute the shell from
- Execute the command as user. The default is root.
doasutility exits 0 on success, and >0 if an error occurs. It may fail for one of the following reasons:
- The config file /etc/doas.conf could not be parsed.
- The user attempted to run a command which is not permitted.
- The password was incorrect.
- The specified command was not found or is not executable.
doascommand first appeared in OpenBSD 5.8.
|January 16, 2021||Linux 5.13.13-arch1-1|