On 2/11/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > Tobias Weingartner wrote: > > I'm outa my depth here, but seems that any implementation > of something like sudo that belongs to the shell > is an open invitation to security disasters.
It takes a deliberate act to enable sudo for users in a default install; as such, this poses a security threat only to the [un|mis]informed. If you feel the default 300 second timeout is too long, or is generally unacceptable, you might consider the following in your /etc/sudoers file: # Defaults specification Defaults timestamp_timeout = 0 This policy will affect sudo users system-wide. You should use /usr/sbin/visudo to edit /etc/sudoers until you have a solid working knowledge of its syntax.
