passwd prompt

Miles, Karl Karl.Miles at littlewoods.co.uk
Wed Feb 26 02:35:03 EST 2003 

Peter,

Yes there is a way of overriding the default timeout.  To do it for all
users
add the following text to your /etc/sudoers file with 'visudo':

Defaults		timestamp_timeout=0

This will make the user have to authenticate each time, replace this number
with the number of minutes you'd prefer.  A number less that zero will have
the user's timestamp never expire.

As for applying it for selected users, you can use your User_Alias' like so:

User_Alias		GRP1=user01,user03,user04
User_Alias		GRP2=user02,user05
User_Alias		GRP3=user06

Defaults:GRP1	timestamp_timeout=0
Defaults:GRP2	timestamp_timeout=10
Defaults:GRP3	timestamp_timeout=-1

So, GRP1 users will have to authenticate every time, GRP2 every 10 minutes,
and GRP3's timestamps won't expire.  They can kill their timestamp if they
want with:

sudo -k

Hope that helps you.  It's all in the documentation on the website :)

Karl.

-----Original Message-----
From: peterschmeichel at discoverfinancial.com
[mailto:peterschmeichel at discoverfinancial.com]
Sent: 25 February 2003 17:11
To: sudo-users at sudo.ws
Subject: passwd prompt


We are using the pre-complied version 1.6.6 for AIX.  The default password
prompt timeout is 5 minutes.  Is there a way to have certain users type
their password every time they run sudo, without re-compiling? And what is
the syntax of the parameter.


Thank you,

Peter Schmeichel




____________________________________________________________ 
sudo-users mailing list <sudo-users at sudo.ws>
For list information, options, or to unsubscribe, visit:
http://www.sudo.ws/mailman/listinfo/sudo-users

***********************************************************************
This e-mail and its attachments are intended for the above named 
recipient(s) only and are confidential and may be privileged.
If they have come to you in error you must take no action based 
on them, nor must you copy or disclose them or any part of 
their contents to any person or organisation; please notify the 
sender immediately and delete this e-mail and its attachments from 
your computer system.

Please note that Internet communications are not necessarily secure 
and may be changed, intercepted or corrupted. We advise that 
you understand and observe this lack of security when e-mailing us 
and we will not accept any liability for any such changes, 
interceptions or corruptions. 

Although we have taken steps to ensure that this e-mail and its 
attachments are free from any virus, we advise that in keeping 
with good computing practice the recipient should ensure they 
are actually virus free.

Copyright in this e-mail and attachments created by us belongs 
to Littlewoods. 

Littlewoods takes steps to prohibit the transmission of offensive, 
obscene or discriminatory material.  If this message contains 
inappropriate material please forward the e-mail intact to 
postmaster at littlewoods.co.uk and it will be investigated. 
Statements and opinions contained in this e-mail may not 
necessarily represent those of Littlewoods.

Please note that e-mail communication may be monitored.

Registered office: 
Littlewoods Retail Limited, 
Sir John Moores Building, 
100 Old Hall Street, 
Liverpool,
L70 1AB 
Registered no: 421258  

http://www.littlewoods.com 
***********************************************************************

More information about the sudo-users mailing list