[sudo-users] pam session
Karel Zak
kzak at redhat.com
Tue May 24 05:20:17 EDT 2005
Hi,
is there any real reason why 'sudo' doesn't use PAM session? It means
the code doesn't call pam_open_session() and pam_close_sesssion().
The 'sudo' command without PAM session support is security problem,
because new session from 'sudo' for example
ignore /etc/security/limits.conf where you can set limits for system
resources usage.
regards,
Karel
--
Karel Zak <kzak at redhat.com>
More information about the sudo-users
mailing list