passwd prompt
Miles, Karl
Karl.Miles at littlewoods.co.uk
Wed Feb 26 02:35:03 EST 2003
Peter,
Yes there is a way of overriding the default timeout. To do it for all
users
add the following text to your /etc/sudoers file with 'visudo':
Defaults timestamp_timeout=0
This will make the user have to authenticate each time, replace this number
with the number of minutes you'd prefer. A number less that zero will have
the user's timestamp never expire.
As for applying it for selected users, you can use your User_Alias' like so:
User_Alias GRP1=user01,user03,user04
User_Alias GRP2=user02,user05
User_Alias GRP3=user06
Defaults:GRP1 timestamp_timeout=0
Defaults:GRP2 timestamp_timeout=10
Defaults:GRP3 timestamp_timeout=-1
So, GRP1 users will have to authenticate every time, GRP2 every 10 minutes,
and GRP3's timestamps won't expire. They can kill their timestamp if they
want with:
sudo -k
Hope that helps you. It's all in the documentation on the website :)
Karl.
-----Original Message-----
From: peterschmeichel at discoverfinancial.com
[mailto:peterschmeichel at discoverfinancial.com]
Sent: 25 February 2003 17:11
To: sudo-users at sudo.ws
Subject: passwd prompt
We are using the pre-complied version 1.6.6 for AIX. The default password
prompt timeout is 5 minutes. Is there a way to have certain users type
their password every time they run sudo, without re-compiling? And what is
the syntax of the parameter.
Thank you,
Peter Schmeichel
____________________________________________________________
sudo-users mailing list <sudo-users at sudo.ws>
For list information, options, or to unsubscribe, visit:
http://www.sudo.ws/mailman/listinfo/sudo-users
***********************************************************************
This e-mail and its attachments are intended for the above named
recipient(s) only and are confidential and may be privileged.
If they have come to you in error you must take no action based
on them, nor must you copy or disclose them or any part of
their contents to any person or organisation; please notify the
sender immediately and delete this e-mail and its attachments from
your computer system.
Please note that Internet communications are not necessarily secure
and may be changed, intercepted or corrupted. We advise that
you understand and observe this lack of security when e-mailing us
and we will not accept any liability for any such changes,
interceptions or corruptions.
Although we have taken steps to ensure that this e-mail and its
attachments are free from any virus, we advise that in keeping
with good computing practice the recipient should ensure they
are actually virus free.
Copyright in this e-mail and attachments created by us belongs
to Littlewoods.
Littlewoods takes steps to prohibit the transmission of offensive,
obscene or discriminatory material. If this message contains
inappropriate material please forward the e-mail intact to
postmaster at littlewoods.co.uk and it will be investigated.
Statements and opinions contained in this e-mail may not
necessarily represent those of Littlewoods.
Please note that e-mail communication may be monitored.
Registered office:
Littlewoods Retail Limited,
Sir John Moores Building,
100 Old Hall Street,
Liverpool,
L70 1AB
Registered no: 421258
http://www.littlewoods.com
***********************************************************************
More information about the sudo-users
mailing list