execute commands as another user
doas utility executes the given command as another
user. The command argument is mandatory unless
-s is specified.
The options are as follows:
- Use the specified authentication style when validating the user, as
allowed by /etc/login.conf. A list of
doas-specific authentication methods may be configured by adding an
‘auth-doas’ entry in
- Parse and check the configuration file config, then
exit. If command is supplied,
doas will also perform command matching. In the
latter case either ‘permit’, ‘permit nopass’
or ‘deny’ will be printed on standard output, depending on
command matching results. No command is executed.
- Non interactive mode, fail if
doas would prompt
- Same as
-s but simulates a full login. Please note
this may result in doas applying resource limits to the user based on the
target user's login class. However, environment variables applicable to
the target user are still stripped, unless KEEPENV is specified.
- Execute the shell from
- Execute the command as user. The default is
- Any dashes after a combined double dash (--) will be interpreted as part
of the command to be run or its parameters. Not an argument passed to doas
doas utility exits 0 on success,
and >0 if an error occurs. It may fail for one of the following
- The config file /usr/local/etc/doas.conf could not
- The user attempted to run a command which is not permitted.
- The password was incorrect.
- The specified command was not found or is not executable.
doas command first appeared in