SUS is a tool to allow a user to run a command as another user.
Normally, it is used to allow a user to run a command as the
super user. In this respect, SUS is similar in functionality to
the widely popular (and excellent) SUDO utility.

SUS differs from SUDO in 2 major areas. The first is that the
control file is preprocessed as it is read by a CPP like utility
which allows for complex textual substitutions and control flow
control. This simplifies the core control language while at
the same time allowing for expression of more complex permission
sets.

The second main difference is that SUS allows for a much
finer grain of control than is available with sudo, because it allows
for matching of not just the command argument strings, but the
attributes of the objects which are referenced by such arguments.
For example, SUS will allow the system administrator to
build a control file, which would allow a user to use the rm
command on any file which has a particular owner, no matter
what the name of the file. SUS understands all the common UNIX
objects such as files and directories, user, groups, processes and hosts
and provices a rich set of built in functionality for matching
of these objects against the contraints of the control file.

See the sample control for a simple demonstration of
some of the functionality available. See the man pages
for a complete description of the operation of SUS.

See the INSTALL file for installation details.