Thanks a lot for your answer. On Wed, 2011-06-01 at 00:40 +0200, Anders Johansson wrote:
On Wednesday 01 June 2011 00:24:22 Edwin Helbert Aponte Angarita wrote:
I think this is a security issue. An unprivileged user that knows that the system is maintained remotely using ssh and, perhaps, sudo, could keep attempting to use sudo until they gets it.
They would first need to log in as the same user the admin was using. sudo won't do that for all users. It just remembers that you have already authenticated once, and won't force you to do it again until some time later.
It is a convenience thing in sudo, so the same user won't have to type the admin password every single time. You can disable it if you like in /etc/sudoers by adding
timestamp_timeout 0
By default sudo will not ask the same user for the password until 5 minutes later
Anders
-- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org