From owner-freebsd-questions@FreeBSD.ORG Sun Aug 1 19:40:40 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C734A1065672 for ; Sun, 1 Aug 2010 19:40:40 +0000 (UTC) (envelope-from gurpreet007@gmail.com) Received: from mail-wy0-f182.google.com (mail-wy0-f182.google.com [74.125.82.182]) by mx1.freebsd.org (Postfix) with ESMTP id 5896D8FC16 for ; Sun, 1 Aug 2010 19:40:39 +0000 (UTC) Received: by wyj26 with SMTP id 26so3233541wyj.13 for ; Sun, 01 Aug 2010 12:40:39 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:mime-version:received:in-reply-to :references:from:date:message-id:subject:to:cc:content-type; bh=rC97z71TSfmzE6VhI3ynKPVr/zsu2a5VCIOSzWki/0s=; b=UMrxUi12sDJxO37fP2c240nN/1rdT0GsRfOBuLQJ3JH6wThoEk2BdZrFLa4fv8HryX LiePI86Bit0wzoDwgpu4oNqxz4IRVKYkAlvmomRl9uoGncrhDRGR/IVnglvH5D+yytTf N6mjdB2txV88L0rk9tNYJiLRoz7zEK9rmwHDQ= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; b=esEiUl6IdKSNOyCIhm5r99u0wi6NmN0WSA1U0eHD3knH7Wx7Wue7Pl3JVPskmp95QA QA1VlWd+8S+WuSI1iNZP/qcNqFmewsVJk37txo2uviYm9Jkl3gcNbSI0C+nhj8NUvxrX 5uk107z+cgMNl485hxijltRru5PJcDNvqxseM= Received: by 10.216.159.72 with SMTP id r50mr4023567wek.92.1280691639100; Sun, 01 Aug 2010 12:40:39 -0700 (PDT) MIME-Version: 1.0 Received: by 10.216.165.73 with HTTP; Sun, 1 Aug 2010 12:40:19 -0700 (PDT) In-Reply-To: <4C55C43C.2090603@laposte.net> References: <44aap6ns4y.fsf@lowell-desk.lan> <4C55C43C.2090603@laposte.net> From: Gurpreet Singh Date: Mon, 2 Aug 2010 01:10:19 +0530 Message-ID: To: =?ISO-8859-1?Q?Michael_Gr=FCnewald?= Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Lowell Gilbert , freebsd-questions@freebsd.org Subject: Re: sudo -K/-k ineffective X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Aug 2010 19:40:40 -0000 I don't see anything suspicious in the timestamp directory: foo% sudo ls -l /var/run/sudo/ total 12 drwx------ 2 root wheel 512 Aug 2 01:06 gurpreet drwx------ 2 root wheel 512 Aug 2 00:37 other drwx------ 2 root wheel 512 Aug 2 00:37 third foo% sudo ls -l /var/run/sudo/gurpreet total 8 -rw------- 1 root wheel 20 Aug 2 01:07 0 -rw------- 1 root wheel 20 Aug 2 00:59 1 also, the FS containing this directory (/ itself) is mounted without noatime. foo% mount /dev/ad0s1a on / (ufs, local) devfs on /dev (devfs, local, multilabel) 2010/8/2 Michael Gr=FCnewald > Hi, > > Lowell Gilbert wrote: > >> me writes: >> >>> Upon doing sudo as a normal user (non-root), sudo asks f= or >>> >>> password only once, subsequent invocations of sudo doesn't ask for >>> password >>> - even though I do sudo -k or sudo -K in between. >>> Although sudo starts asking for password after the time stamp expiry. >>> >> [...] >> >> I don't think sudo even knows about pam(3), so I'm not sure what could >> be happening here... >> > > Maybe there is something funny with sudo's timestamp directory? If it is > mounted with option `noatime' it may have consequences similar to what yo= u > discribe. > > Michael > --=20 Life is not fair. Get used to it. .... Be nice to nerds. Chances are you'll end up working for one.