How to extend sudo Password Timeout

0
(0)

sudo password timeout extend

System administrators also authenticate as normal users and use sudo when administrative tasks are performed. The first time sudo run they asks for the password, after which sudo is active for some time.

The default password timeout is 15 minutes. Therefore, if sudo is run again within 15 minutes (900 seconds), the prompt to re-enter the password will not occur.

Extend Timestamp Timeout

The timestamp_timeout defines the number of minutes that elapse before sudo should ask for the password again. Edit the /etc/sudoers file to change the timestamp_timeout.

I recommend using command visudo to edit the /etc/sudoers file. Add the value timestamp_timeout on the line after “Defaults”, in the /etc/sudoers file.

$ sudo su

A grep shows the searched lines, here a sudoers at Linux Mint.

$ grep Defaults /etc/sudoers
sudoers timestamp_timeout

The default setting is Defaults env_reset

$ sudo visudo 

Edit sudoers so that the Defaults line looks like this:

Defaults    env_reset,timestamp_timeout=-0

timestamp_timeout=-1 (minus one) causes the sudo password to never expire.

  For Debian/Ubuntu distributions, the -0 option did not work. A higher value e.g. 60 is accepted.

timestamp_timeout=0 (zero) causes the sudo password to expire every 0 (zero) seconds. This means that each time sudo is called, the password is asked.

 

How useful was this post?

Click on a star to rate it!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.

We are sorry that this post was not useful for you!

Let us improve this post!

Tell us how we can improve this post?

Leave a Reply

Your email address will not be published.