1 |
On Thursday 05 October 2006 16:36, "Daevid Vincent" <daevid@××××××.com> |
2 |
wrote about 'RE: [gentoo-user] sudo requires password twice': |
3 |
> I've not figured this out yet, so reposting in case someone has any |
4 |
> ideas... |
5 |
|
6 |
Hrm, I either never got the original (not surprising) of I was just |
7 |
skimming my mail to quickly and missed your question (even less |
8 |
surprising). |
9 |
|
10 |
> auth required /lib/security/pam_stack.so service=system-auth |
11 |
|
12 |
This line... |
13 |
|
14 |
> auth include system-auth |
15 |
|
16 |
and this one are redundant. They both run through the system-auth chain as |
17 |
part of authentication. In effect you are telling PAM that any sudo |
18 |
authentication needs to do system authentication twice w/ whatever |
19 |
pam_nologin does in between. |
20 |
|
21 |
You'll want to remove one or the other, after investigating any subtle |
22 |
differences between the two that I'm unaware of, which may or may not |
23 |
exist. (I haven't messed with PAM in months.) |
24 |
|
25 |
-- |
26 |
"If there's one thing we've established over the years, |
27 |
it's that the vast majority of our users don't have the slightest |
28 |
clue what's best for them in terms of package stability." |
29 |
-- Gentoo Developer Ciaran McCreesh |