On 01/11/2017 10:59 AM, Carlos E. R. wrote:
On 2017-01-10 21:19, L A Walsh wrote:
W/R/T bugzilla and logging in. Would it be possible to extend the time one is logged-in to 30 days from last activity (with option to 'log off').
You are not the first one to ask.
The quick answer is "no".
This is not the typicall https site. It uses a special authentication backend that Novell sells (I don't remember the name), so that "bugzilla" does not have the control. It is used for all suse/novell/opensuse services, not only bugzilla. It has been proven pretty safe: the frontend has been hacked more than once, but they never got the user/pass list.
The same system is also used for the business clients of all Novell web places; apparently security can not be loosened in one place alone, all would be affected. So the timeout and the rules are the same for the entire system.
That's more or less what I know.
Except these days Novell doesn't exist and its Microfocus instead, as far as i'm aware bugzilla is run by Microfocus IT now rather then SUSE and follows Microfocus's corporate security rules with respect to passwords etc. -- Simon Lees (Simotek) http://simotek.net Emergency Update Team keybase.io/simotek SUSE Linux Adeliade Australia, UTC+9:30 GPG Fingerprint: 5B87 DB9D 88DC F606 E489 CEC5 0922 C246 02F0 014B