* L A Walsh <suse@tlinx.org> [04-25-19 12:40]:
On 4/23/2019 1:14 PM, Carlos E. R. wrote:
- From my point of view as user/admin, I would not use it this way, I don't like having to enter the password that often. I thought I remembered there being a timeout option with sudo where you could configure it to let you continue running "root tasks" for the next 'X' minutes and it wouldn't ask you for your password again until the time expired.
Seems like that would solve the issue of having to re-enter passwords but allow entering such a password only when actually needed.
man 5 sudoers sudoers uses per-user time stamp files for credential caching. Once a user has been authenticated, a record is written contain- ing the user ID that was used to authenticate, the terminal session ID, the start time of the session leader (or parent process) and a time stamp (using a monotonic clock if one is available). The user may then use sudo without a password for a short pe- riod of time (5 minutes unless overridden by the timestamp_timeout option). By default, sudoers uses a separate record for each terminal, which means that a user's login sessions are authenticated separately. The timestamp_type option can be used to se- lect the type of time stamp record sudoers will use. -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Registered Linux User #207535 @ http://linuxcounter.net Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet freenode -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org