From owner-freebsd-questions@FreeBSD.ORG Sat Jul 31 02:04:39 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CE839106566C for ; Sat, 31 Jul 2010 02:04:39 +0000 (UTC) (envelope-from freebsd.mtoth@queldor.net) Received: from queldor.net (queldor.com [216.80.108.10]) by mx1.freebsd.org (Postfix) with ESMTP id 78A568FC18 for ; Sat, 31 Jul 2010 02:04:39 +0000 (UTC) Received: from c-24-34-183-218.hsd1.ma.comcast.net ([24.34.183.218] helo=[192.168.1.244]) by queldor.net with esmtpsa (TLSv1:CAMELLIA256-SHA:256) (Exim 4.71 (FreeBSD)) (envelope-from ) id 1Of19A-000PPn-Uw for freebsd-questions@freebsd.org; Fri, 30 Jul 2010 20:45:57 -0500 Message-ID: <4C5380D3.2030403@queldor.net> Date: Fri, 30 Jul 2010 21:48:03 -0400 From: Michael Toth User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.9pre) Gecko/20100217 Lightning/1.0b2pre Shredder/3.0.3pre MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: sudo -K/-k ineffective X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 31 Jul 2010 02:04:39 -0000 On 07/30/2010 06:00 PM, Chris Rees wrote: > It's by design. There's a timeout that you can set, try man sudo. > > Chris > > -------- Chris, That is not by design. sudo -K should remove the timestamp -- sudo -K The -K (sure kill) option is like -k except that it removes the user's time stamp entirely and may not be used in conjunction with a command or other option. This option does not require a password. -- Gurpreet, I am not sure if this is a known bug, I was not able to duplicate this on Freebsd 7.2 running sudo 1.6.9p20 > > Sorry for top-posting, Android won't let me quote, but K-9 can't yet do > threading. > > On 30 Jul 2010 21:43, "me" wrote: > > Hi, > > Upon doing sudo as a normal user (non-root), sudo asks for > password only once, subsequent invocations of sudo doesn't ask for password > - even though I do sudo -k or sudo -K in between. > Although sudo starts asking for password after the time stamp expiry. > > in other words: > > % sudo mkdir /newdir > successful authentication> > > % sudo -k > > % sudo -K > > % sudo mkdir /another_new_dir > > > In sudoers file, NOPASSWD is NOT set. > here is my sudeors file: http://pastebin.com/WFnXCLE1 > > Output of "uname -a": > FreeBSD foo.bar 8.1-RELEASE FreeBSD 8.1-RELEASE #0: Mon Jul 19 02:55:53 UTC > 2010 > root@almeida.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC i386 > > Is this known bug? If not, then it might have security implications. > > Regards, > Gurpreet Singh > -- > Life is not fair. Get used to it. .... Be nice to nerds. Chances are you'll > end up working for one. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"