Article Details
Scrape Timestamp (UTC): 2024-02-04 17:28:14.000
Original Article Text
Click to Toggle View
Microsoft is bringing the Linux sudo command to Windows Server. Microsoft is bringing the Linux 'sudo' feature to Windows Server 2025, offering a new way for admins to elevate privileges for console applications. Superuser do, or sudo, is a Linux console program that allows low-privileged users to execute a command with elevated privileges, usually as root. This command offers increased security in Linux as servers can be used normally under low-privileged accounts while still allowing users to elevate their privileges as needed when running specific commands. An example of the sudo command is shown below, where we run 'whoami' as a low-privileged user and then run it using sudo. Notice that the whoami command shows that I am running it as the bleeping user. However, when I execute whoami with sudo, it elevates my privileges to root. Testing sudo in Windows Server 2025 Microsoft released the first Windows Server 2025 Insider preview build last week. However, soon after, a newer version was leaked online. As first reported by Windows Latest, the leaked version contains some new in-development features, including new settings for a Windows 'sudo' command. These settings are only available after enabling developer mode, and the sudo command does not currently work from the command line yet, showing it is early in development. However, the sudo settings provide some clues as to how the command will work, with the ability to run sudo applications 'In a new windows', 'With input disabled', and 'Inline'. Windows already offers the ability to elevate programs automatically using UAC prompts, causing the programs to run with elevated privileges in their own window. However, some administrative tools, such as bcdedit and reagentc, require you to be an administrator to run these commands. In these cases, the sudo command will allow the programs to run based on its Windows settings, such as in a new window, inline in the current window, or possibly in a non-interactive shell using the disabled input setting. It is important to note that Microsoft commonly tests new features in preview builds that do not make it into the production builds. However, it will be interesting to see how Microsoft integrates this feature into Windows and will be something to keep an eye on.
Daily Brief Summary
Microsoft introduced the concept of integrating the Linux 'sudo' command into the upcoming Windows Server 2025, enhancing administrative privilege management.
The 'sudo' feature allows users with lower privileges to execute commands with elevated rights, traditionally as the root user, adding a layer of security.
In a leaked preview build of Windows Server 2025, new settings for the 'sudo' command were discovered, indicating its early development stage.
The command is not fully operational yet and is revealed to have options to run applications in various modes, such as in a new window or with disabled input.
Currently, Windows uses User Account Control (UAC) prompts to elevate privileges, but 'sudo' could offer a streamlined method for specific administrative tools.
Microsoft's history shows that not all features tested in preview builds may be included in the final product, leaving the 'sudo' command's future integration uncertain.