1PAM_TIMESTAMP(8) Linux-PAM Manual PAM_TIMESTAMP(8)
2
3
4
6 pam_timestamp - Authenticate using cached successful authentication
7 attempts
8
10 pam_timestamp.so [timestamp_timeout=number] [verbose] [debug]
11
13 In a nutshell, pam_timestamp caches successful authentication attempts,
14 and allows you to use a recent successful attempt as the basis for
15 authentication. This is similar mechanism which is used in sudo.
16
17 When an application opens a session using pam_timestamp, a timestamp
18 file is created in the timestampdir directory for the user. When an
19 application attempts to authenticate the user, a pam_timestamp will
20 treat a sufficiently recent timestamp file as grounds for succeeding.
21
23 timestamp_timeout=number
24 How long should pam_timestamp treat timestamp as valid after their
25 last modification date (in seconds). Default is 300 seconds.
26
27 verbose
28 Attempt to inform the user when access is granted.
29
30 debug
31 Turns on debugging messages sent to syslog(3).
32
34 The auth and session module types are provided.
35
37 PAM_AUTH_ERR
38 The module was not able to retrieve the user name or no valid
39 timestamp file was found.
40
41 PAM_SUCCESS
42 Everything was successful.
43
44 PAM_SESSION_ERR
45 Timestamp file could not be created or updated.
46
48 Users can get confused when they are not always asked for passwords
49 when running a given program. Some users reflexively begin typing
50 information before noticing that it is not being asked for.
51
53 auth sufficient pam_timestamp.so verbose
54 auth required pam_unix.so
55
56 session required pam_unix.so
57 session optional pam_timestamp.so
58
59
61 /var/run/sudo/...
62 timestamp files and directories
63
65 pam_timestamp_check(8), pam.conf(5), pam.d(5), pam(8)
66
68 pam_tally was written by Nalin Dahyabhai.
69
70
71
72Linux-PAM Manual 06/16/2009 PAM_TIMESTAMP(8)