On Sun, 11 Sep 2011 11:14:39 -0700, Kees Cook <k...@debian.org> wrote: > Package: sudo > Version: 1.7.4p6-1 > Severity: normal > Tags: patch > User: ubuntu-de...@lists.ubuntu.com > Usertags: origin-ubuntu oneiric ubuntu-patch > > The "mail_badpass" option should be enabled by default, since bad password > attempts mask attempts at running sudo when not allowed (mail_no_user, > etc).
I'm ok with the idea of enabling mail_badpass by default in Debian, but believe it should be done by adding that option to the sudoers Defaults definition, not through a source patch. Is there some reason that wouldn't work for you? Bdale
pgpaQFPHXw8w5.pgp
Description: PGP signature
