[arch-projects] [AUR] Login timout issue (discuss)
Paul Mattal
paul at mattal.com
Wed Oct 3 08:20:40 EDT 2007
tardo wrote:
> Does anyone know the reason why this was implemented? If so, any
> objections to completely removing it?
Security. If you log in somewhere from a public(ish) terminal, then that
terminal is trusted as you forever. Also, you end up with an enormous
number of sessions to track.
I think making it very long (say, 24 hours) rather than completely
removing it is better.
- P
More information about the arch-projects
mailing list