[sudo-users] Displaying errors to users
Todd C. Miller
Todd.Miller at courtesan.com
Tue Nov 14 13:54:20 MST 2017
On Tue, 14 Nov 2017 11:19:59 -0500, seph wrote:
> Using a very small configuration:
> Defaults passwd_tries=0, passwd_timeout=0
> ALL ALL=(ALL:ALL) NOPASSWD: !/bin/cat
> %vagrant ALL=(ALL) NOPASSWD:ALL
> frank ALL=(ALL:ALL) NOPASSWD: /bin/ls
The problem is the "passwd_tries=0" setting. If you remove that
the user will receive the error message after first entering their
password.
I've just committed a fix for this. As a workaround you could do:
Defaults !authenticate
if you never want to require the user to enter a password.
- todd
More information about the sudo-users
mailing list