pam_timestamp_check - Check to see if the default timestamp is valid
pam_timestamp_check [-k] [-d] [target_user]
With no arguments pam_timestamp_check will check to see if the default timestamp is valid, or optionally remove it.
-kInstead of checking the validity of a timestamp, remove it. This is analogous to sudos -k option.
-dInstead of returning validity using an exit status, loop indefinitely, polling regularly and printing the status on standard output.
target_userBy default pam_timestamp_check checks or removes timestamps generated by pam_timestamp when the user authenticates as herself. When the user authenticates as a different user, the name of the timestamp file changes to accommodate this. target_user allows to specify this user name.
0The timestamp is valid.
2The binary is not setuid root.
4User is unknown.
6Invalid controlling tty.
7Timestamp is not valid.
Users can get confused when they are not always asked for passwords when running a given program. Some users reflexively begin typing information before noticing that it is not being asked for.
auth sufficient pam_timestamp.so verbose auth required pam_unix.so
session required pam_unix.so session optional pam_timestamp.so
/var/run/sudo/...timestamp files and directories
pam_timestamp_check(8), pam.conf(5), pam.d(5), pam(8)
pam_tally was written by Nalin Dahyabhai.
|Linux-PAM Manual||PAM_TIMESTAMP_CHECK (8)||06/04/2011|