Comment 2 for bug 783129

Revision history for this message
Christophe Van Reusel (christophevr) wrote :

Hello, Same problem on natty as well. Ok I agree that an timestamp on gksu and sudo is an considerable security risk. There fore it's a good thing to set the default on zero . But users must be allowed to change that. On my work enviroment it's not a security bridge to work with a time stamp. Very strong firewall independent from pc self. No other users are here. So a time stamp from 5 to 15 minutes is not a security issue for me. But in other enviroments I would indeed set it on zero as well. But now it's a real pain in the ass. As I do have a very strong and long password. And it's extremely annoying having to always login again.

sudo itself is ok with Defaults env_reset,timestamp_timeout=5 into sudoers file but gksu not.

This behaviour should be changed on natty or at least the user must be allowed to change the default beheviour ofno time stamp on gksu to a time stamp