First, login sessions lasted forever. Then, they lasted as long as the browser session (I guess meaning the cookies were non-persistent).
Now, they seem to be even shorter. Looking through my browser's cookie expiration times for what comes closest to fitting, I'm guessing they're around eight hours. Is there a _reason_ for the inconvenience, or is this just one of those security policy things (many of which are well known to have a rather arbitrary relationship with actual security)? Main thing I can think of that one could really abuse with a site login is to spam the lists, and I imagine that any accounts used to do that are throwaways anyhow. -- This message posted from opensolaris.org _______________________________________________ website-discuss mailing list [email protected]
