millert
commented
2 months ago Thanks for doing this. In ecdf0c80f36e971f3090c495377b03a11931816c I decided to make this a sudoers option instead (like the existing pam settings) rather than a sudo.conf option. Typically, I reserve sudo.conf for settings that control the sudo front-end itself.
Ferdi265
This commit adds a boolean setting 'pam_silent' that controls whether sudo will pass PAM_SILENT to pam_authenticate(). The default for this setting is 'true', which reflects the previous behaviour.
When this setting is set to 'false', pam messages such as faillock lockout message will be displayed, which is not the case for current 'sudo'.
Related to issue #216.