minus-squareFlyswat@lemmy.mltoLinux@lemmy.ml•root (or sudo) access delay instead of passwordlinkfedilinkarrow-up12·1 day agoIn terms of security, an alias can be easily overridden by a user who can even choose yo use another shell which will not read .bashrc. So this solution cannot force/require the user to comply to the delay requirement. I was thinking maybe with a PAM module the delay can be achieved but I haven’t found one that readily does that. Maybe OP needs to implement one :) linkfedilink
In terms of security, an alias can be easily overridden by a user who can even choose yo use another shell which will not read .bashrc.
So this solution cannot force/require the user to comply to the delay requirement.
I was thinking maybe with a PAM module the delay can be achieved but I haven’t found one that readily does that. Maybe OP needs to implement one :)