On 2016-12-15, Ax0n wrote:
> I don't know how doas is keeping track of a session.
It's using a kernel "verified auth" feature. See tty(4) :
TIOCCHKVERAUTH void
Check the verified auth status of this session. The calling
process must have the same real user ID an
On 15 December 2016 at 10:42, trondd wrote:
> On Thu, December 15, 2016 12:28 pm, Ax0n wrote:
>> I don't know how doas is keeping track of a session. If it's by
>> interactive
>> tty session only, that could cause problems with non-interactive scripts.
>> I'll let someone closer to the code answer
On Thu, December 15, 2016 12:28 pm, Ax0n wrote:
> I don't know how doas is keeping track of a session. If it's by
> interactive
> tty session only, that could cause problems with non-interactive scripts.
> I'll let someone closer to the code answer that question.
>
It's tied to the shell.
http://
I don't know how doas is keeping track of a session. If it's by interactive
tty session only, that could cause problems with non-interactive scripts.
I'll let someone closer to the code answer that question.
On Thu, Dec 15, 2016 at 11:25 AM, jungle Boogie
wrote:
> On 15 December 2016 at 09:21, A
On 15 December 2016 at 09:21, Ax0n wrote:
> In -CURRENT, doas.conf has a "persist" keyword that will only prompt once
> per session. This isn't available in OpenBSD 6.0, but should work when 6.1
> is released. Here's a fairly minimal rule that would allow wheel group users
> to do whatever they wa
For now, you may want to use the "nopass" keyword and set up
highly-restrictive rules. The last matching rule determines the action
taken, so you can have more general rules up top, and more specific ones
that don't require a password toward the end. For example, my wireless
network manager script
Hi All,
Should I be prompted for a password during this scenario?
$ doas date
doas (jun...@openbsd.my.domain) password:
Thu Dec 15 08:55:39 PST 2016
$ ./date.sh
doas (jun...@openbsd.my.domain) password:
Thu Dec 15 08:55:46 PST 2016
As you see, only seconds past from both commands and yet, I'm pr
7 matches
Mail list logo
