[sudo-users] [SOLVED] sudo Problem with Session Management
Aaron Lewis
aaron.lewis1989 at gmail.com
Fri Feb 12 10:53:15 EST 2010
Yeah , i'm writing a automatically compiling system.
Often i look for --enable options , but this use --with instead. Looks
like i need to improve my program.
after i enable --with-tty-tickets , it works fine for me.
Thanks Mark : )
Mark Janssen wrote:
> On Fri, Feb 12, 2010 at 8:23 AM, Aaron Lewis <aaron.lewis1989 at gmail.com> wrote:
>
>> For my old sudo ( installed with package manager ) ,
>> it takes every virtual terminal , x-terminal as different session.
>> So previous authentication will not effect other sessions.
>>
>> But the official source code does provide this feature ,
>> once u type in your passwd , in a few minutes , you are authenticated
>> everywhere , it's a security problem .
>>
>
> That's a configuration option....
> look for
>
> tty_tickets If set, users must authenticate on a per-tty basis.
> Normally, sudo uses a directory in the ticket dir with
> the same name as the user running it. With this flag
> enabled, sudo will use a file named for the tty the
> user is logged in on in that directory. This flag is
> off by default.
>
> Your distro-package probably turned this on by default, now it's off
>
>
--
Best Regards,
Aaron Lewis
RedHat Certificated Engineer
SUPINFO UNIV.
More information about the sudo-users
mailing list