Comment 2 for bug 783129
Revision history for this message
| Christophe Van Reusel (christophevr) wrote | #2 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
Hello, Same problem on natty as well. Ok I agree that an timestamp on gksu and sudo is an considerable security risk. There fore it's a good thing to set the default on zero . But users must be allowed to change that. On my work enviroment it's not a security bridge to work with a time stamp. Very strong firewall independent from pc self. No other users are here. So a time stamp from 5 to 15 minutes is not a security issue for me. But in other enviroments I would indeed set it on zero as well. But now it's a real pain in the ass. As I do have a very strong and long password. And it's extremely annoying having to always login again.
sudo itself is ok with Defaults env_reset,
This behaviour should be changed on natty or at least the user must be allowed to change the default beheviour ofno time stamp on gksu to a time stamp