Codex

PAM_TIMESTAMP

Section: Linux-PAM Manual (8)

Updated: 09/19/2013

Index?action=index Return to Main Contents


NAME

pam_timestamp - Authenticate using cached successful authentication attempts

SYNOPSIS

:pam_timestamp.so [timestamp_timeout=number] [verbose] [debug]

DESCRIPTION

In a nutshell, pam_timestamp caches successful authentication attempts, and allows you to use a recent successful attempt as the basis for authentication. This is similar mechanism which is used in sudo.

When an application opens a session using pam_timestamp, a timestamp file is created in the timestampdir directory for the user. When an application attempts to authenticate the user, a pam_timestamp will treat a sufficiently recent timestamp file as grounds for succeeding.

OPTIONS

timestamp_timeout=number

How long should pam_timestamp treat timestamp as valid after their last modification date (in seconds). Default is 300 seconds.

verbose

Attempt to inform the user when access is granted.

debug

Turns on debugging messages sent to syslog?(3).

MODULE TYPES PROVIDED

The auth and session module types are provided.

RETURN VALUES

PAM_AUTH_ERR

The module was not able to retrieve the user name or no valid timestamp file was found.

PAM_SUCCESS

Everything was successful.

PAM_SESSION_ERR

Timestamp file could not be created or updated.

NOTES

Users can get confused when they are not always asked for passwords when running a given program. Some users reflexively begin typing information before noticing that it is not being asked for.

EXAMPLES

FILES

/var/run/sudo/...

timestamp files and directories

SEE ALSO

pam_timestamp_check?(8), (5), (5), pam?(8)

AUTHOR

pam_timestamp was written by Nalin Dahyabhai.


Index

NAME

SYNOPSIS

DESCRIPTION

OPTIONS

MODULE TYPES PROVIDED

RETURN VALUES

NOTES

EXAMPLES

FILES

SEE ALSO

AUTHOR