The problem goes deeper. 1) Open a terminal 2) Run `sudo id` 3) What happens:
Inside /var/log/auth.log the action gets documented Mar 13 11:30:45 foo sudo: myuser : TTY=pts/0 ; PWD=/home/myuser ; USER=root ; COMMAND=id Mar 13 11:30:45 foo sudo: pam_unix(sudo:session): session opened for user root by myuser(uid=0) Mar 13 11:30:45 foo sudo: pam_unix(sudo:session): session closed for user root And a ticket is issued pts/0 inside /var/run/sudo/myuser -rw------- 1 root myuser 0 2008-03-13 11:30 0 3) Now close the terminal windows (no matter if you close it via exit or "close button) 4) Open a new terminal 5) Run `sudo id` again -> You won't be bothered with a password 6) Why? The new terminal window is again pts/0 which has still a valid ticket inside /var/run/sudo/myuser. In my eyes the ticket should be deleted when you close a terminal. -- logout does not remove timestamp from sudo https://bugs.launchpad.net/bugs/46890 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
