want longer root password timeout

tomtomme · May 18, 2012, 12:33pm

Hi,
I found out how to set the time out for sudo (default 5min, what was too short for my feeling…). Now I also want to have a longer root password time out when I for example open Yast graphically. That seems to be configured somewhere else, but I can´t find the file/location/tool…
Thanks for any hint, tomtomme

hcvv · May 18, 2012, 1:14pm

It is allways appreciated when you explain what level of openSUSE you use and what desktop (KDE, Gnome, none, …).

You may think it is irrilevant for the problem you have, but you better leave that decision to those who are willing to help you. And it is irritating for many to have to ask again and again for those obvious pieces of information.

tomtomme · May 18, 2012, 1:53pm

Thanks for the hint. That info is now in my signature.

robin_listas · May 18, 2012, 2:13pm

On 2012-05-18 13:56, tomtomme wrote:
>
> Thanks for the hint. That info is now in my signature.

I ignore information in the signature unless the email tells to look at it.
It is often wrong.

Ok, you are using tumbleweed - then you should ask in the tumbleweed forum.
Tumbleweed has specific issues.

–
Cheers / Saludos,

Carlos E. R.
(from 11.4 x86_64 “Celadon” at Telcontar)

knurpht · May 18, 2012, 2:21pm

So, you’re on KDE, which means we’re talking about the invocation of “kdesu”.

First, I took a look around, haven’t found an answer, but
Second, are you aware of the fact that by doing this, you are breaking something that was meant to make your system secure and safe?

tomtomme · May 18, 2012, 4:03pm

I am aware, that it makes it a bit less secure. But prolonging the timeout from 5 to 20 minutes or so will not break things or make my system totally in-secure from my point of view. But thanks for the hint, I will suggest to set different timeouts depending on how secure I think my different boxes have to be. The one at work will definetely get a shorter time out than the htpc not used for sensible things.

So - anyone - is there a .conf file for kdesu? Where?
I searched and found only:

cat /usr/share/doc/kde/HTML/en/kdesu/index.docbook | grep time
away. Instead, they are kept for a specified amount of time. This is
the timeout value from in the control module.  If another request for
the same command is coming within this time period, the client does

robin_listas · May 18, 2012, 4:53pm

On 2012-05-18 16:06, tomtomme wrote:
> So - anyone - is there a .conf file for kdesu? Where?
> I searched and found only:


cer@Telcontar:~> locate kdesu | grep home
/home/cer/.kde4/share/config/kdesurc
cer@Telcontar:~>

–
Cheers / Saludos,

Carlos E. R.
(from 11.4 x86_64 “Celadon” at Telcontar)

user · May 18, 2012, 4:56pm

On 05/18/2012 12:36 PM, tomtomme wrote:
> I also want to have a longer root
> password time out when I for example open Yast graphically.

once i open YaST Control Center i just leave it open (minimized, or on a
desktop with nothing but root powered apps)…

of course, if you do that at the office you also need to close those
when leaving the box unattended…

–
dd

tomtomme · May 22, 2012, 10:52am


cer@Telcontar:~> locate kdesu | grep home
/home/cer/.kde4/share/config/kdesurc
cer@Telcontar:~>

Thanks! And I think I also found the value to set there from here https://groups.google.com/forum/#!topic/alt.os.linux.slackware/-R8999VCSvE:


[Passwords]
Timeout=1800

seems to work