OPENDOAS [0]
________________________________________________________________________________

doas is a minimal replacement for the venerable sudo. It was initially written 
by Ted Unangst of the OpenBSD project to provide 95% of the features of sudo 
with a fraction of the codebase.


Configuration
________________________________________________________________________________

Begin by first verifying that you have opendoas installed:

+------------------------------------------------------------------------------+
|                                                                              |
|   $ kiss b opendoas && kiss i opendoas                                       |
|                                                                              |
+------------------------------------------------------------------------------+

Using your preferred text editor, modify the /etc/doas.conf file. Within the 
doas.conf, there are plenty of examples of rules to choose from and modify.

Below are a few examples of *basic* rules that could be set:  

+------------------------------------------------------------------------------+
|   Allow a specific regular user, USER, to escalate to root permissions.      |
+------------------------------------------------------------------------------+
|                                                                              |
|   permit USER                                                                |
|                                                                              |
+------------------------------------------------------------------------------+
|   Allow a specific group (i.e. "wheel") to escalate to root permissions.     |
+------------------------------------------------------------------------------+
|                                                                              |
|   permit wheel                                                               |
|                                                                              |
+------------------------------------------------------------------------------+
|   You can also allow privilege escalation without a password.                |
+------------------------------------------------------------------------------+
|                                                                              |
|   permit nopass [GROUP OR USER]                                              |
|                                                                              |
+------------------------------------------------------------------------------+

Refer to OpenBSD doas.conf manual page [1] for more information.


References
________________________________________________________________________________

[0] https://github.com/Duncaen/OpenDoas
[1] https://man.openbsd.org/doas.conf.5