-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Content-ID:
Lack of login persistence bothers me most.
It is intentional, so it is not going to change. The system uses a very secure authentication system commercialized (I think) by Novel (Access Manager from NetIQ), different from Bugzilla own system (whatever that is). And it is the same system used on all "our" sites, so that the same login works on Bugzilla and the forums and many other places. It has to be secure because it is also used by Novell with their other products and paying customers. That's why there is no login persistence. Security. And it has serious advantages. Recently, the forums were hacked. A photo of the emails and password was published to prove they got inside. But the passwords they got were not the real passwords, they were fakes. The real passwords were handled behind, on a different machine and service they could not even get close to. So the hundred of thousands of users did not have to change their passwords. https://news.opensuse.org/2014/01/07/opensuse-forums-defaced/ <http://thehackernews.com/2014/01/openSUSE-Forum-Hacked-by-Pakistani-hacker.h... > Previously, the Ubuntu forums were attacked, and there they did got the real passwords. You can find the email threads at the opensuse mail list: 13-07-23 15:46 Basil Chupin (5165) . [opensuse] Ubuntu Forum hacked 14-01-08 09:37 Michael Hamilton (4804) . [opensuse] forums.opensuse.org down? - -- Cheers Carlos E. R. (from 13.1 x86_64 "Bottle" (Minas Tirith)) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iF4EAREIAAYFAlL7a7MACgkQja8UbcUWM1zC/QD/RKkfv+0DfSotUduV818Tx0a4 /YzyLMGNFDQ+VWk8FeAA/iG23qPaM+4pyybzOMefqD3Aav3Y7lFsOg0EY8vTN+dT =5Kgn -----END PGP SIGNATURE-----