[sudo-users] pam session

Karel Zak kzak at redhat.com
Tue May 24 05:20:17 EDT 2005


is there any real reason why 'sudo' doesn't use PAM session? It means
the code doesn't call pam_open_session() and pam_close_sesssion(). 

The 'sudo' command without PAM session support is security problem,
because new session from 'sudo' for example
ignore /etc/security/limits.conf where you can set limits for system
resources usage.


Karel Zak <kzak at redhat.com>

More information about the sudo-users mailing list