[arch-projects] [AUR] Login timout issue (discuss)

Paul Mattal paul at mattal.com
Wed Oct 3 08:20:40 EDT 2007

tardo wrote:
> Does anyone know the reason why this was implemented? If so, any
> objections to completely removing it?

Security. If you log in somewhere from a public(ish) terminal, then that
terminal is trusted as you forever. Also, you end up with an enormous
number of sessions to track.

I think making it very long (say, 24 hours) rather than completely
removing it is better.

- P

More information about the arch-projects mailing list