It is currently Sun Dec 17, 2017 4:37 pm

All times are UTC - 7 hours





Post new topic Reply to topic  [ 15 posts ] 
Author Message
 Post subject: staying logged in?
PostPosted: Sun Mar 06, 2005 3:04 am 
Offline
Site Admin
User avatar

Joined: Mon Sep 20, 2004 6:04 am
Posts: 3488
Location: Indianapolis
Does anyone else have trouble staying logged in, or it just me? Like when I view the main index, I'll usually be logged in. When I click on a board or anything else sometimes I get logged out (but only if it's been a few hours since I last logged in, I think). It's only slightly annoying.

It doesn't happen to me on other sites using phpBB.

There's also some oddities with using Zone Alarm and logging into NESWorld's forum (I have to shut down Zone Alarm to log in). So I kinda wondered if it's related to something specific with the Parodius server (if that's even possible), or just a coincidence there.

While I'm at it, can anyone recommend another cheap or free firewall?


Top
 Profile  
 
 Post subject:
PostPosted: Mon Mar 07, 2005 8:20 pm 
Offline
User avatar

Joined: Sun Sep 19, 2004 9:28 pm
Posts: 3192
Location: Mountain View, CA, USA
It sounds like a possible issue with cookies expiring, which would be generated by phpBB itself. Here's my quick test; note the Set-Cookie lines being generated by phpBB:

Code:
(19:13 jdc@pentarou) ~ $ date
Mon  7 Mar 2005 19:13:51 PST

(19:13 jdc@pentarou) ~ $ telnet nesdev.com 80
Trying 64.62.145.230...
Connected to nesdev.com.
Escape character is '^]'.
GET /bbs/ HTTP/1.0
Host: nesdev.com

HTTP/1.1 200 OK
Date: Tue, 08 Mar 2005 03:14:01 GMT
Server: Apache/2.0.53 (FreeBSD) mod_ssl/2.0.53 OpenSSL/0.9.7d
X-Powered-By: PHP/5.0.3
Cache-Control: no-cache, pre-check=0, post-check=0
Expires: 0
Pragma: no-cache
Set-Cookie: phpbb2mysql_data=a%3A0%3A%7B%7D; expires=Wed, 08-Mar-2006 03:14:01 GMT; path=/; domain=nesdev.com
Set-Cookie: phpbb2mysql_sid=28830b05023a0ddf1dc6856b3b522ada; path=/; domain=nesdev.com
Connection: close
Content-Type: text/html; charset=utf-8


Reading the FAQ (http://www.phpbb.com/support/documents.php?mode=faq) shows the following tidbits of help:

Quote:
You can increase the default length of sessions (ie. how long before a users session is considered 'dead') in Admin->General->Configuration->Cookie Settings->Session Length


If you set this number too high, I will kill you. :D I don't want to see sessions laying around on the filesystem for weeks at a time; and I won't resort to using mm to do sessions via SHM, because it'll simply grow Apache's process size over time...

In addition, the authors of this software seem to the cookie based upon a combination of things -- including your IP number -- which completely fucks people visiting from dynamic IPs. See FAQ section My AOL based users keep getting logged out!

BTW, phpBB needs to be upgraded to 2.0.13 (security holes in both .11 and .12, including someone being able to gain administrative access). :-)


Last edited by koitsu on Mon Mar 07, 2005 8:25 pm, edited 1 time in total.

Top
 Profile  
 
 Post subject:
PostPosted: Mon Mar 07, 2005 8:24 pm 
Offline
User avatar

Joined: Sun Sep 19, 2004 9:28 pm
Posts: 3192
Location: Mountain View, CA, USA
Also, re: cheap firewall: I recommend the Linksys WRT54GS units if you're looking for a firewall + NAT solution. They're generally inexpensive, run Linux, and have a slew of firmwares available out there from the public (I use HyperWRT).

If money is a big stickler, and you'd prefer to use an actual PC for a NAT+fw unit (vs. an embedded device), you might consider SmoothWall. I'm told the thing is *wonderful*, and from what little I've read about it, it seems to be so.


Top
 Profile  
 
 Post subject:
PostPosted: Mon Mar 07, 2005 11:45 pm 
Offline
Site Admin
User avatar

Joined: Mon Sep 20, 2004 6:04 am
Posts: 3488
Location: Indianapolis
Alright, I did the forum upgrade. I probably should check for those more often, heh.

I looked in the session length, it's 3600 seconds (so 60 minutes). Seems to be pretty reasonable as-is.

That router does sound pretty nice, I only use one PC though, so software ones seem to work well enough for now.


Top
 Profile  
 
 Post subject:
PostPosted: Sat Dec 17, 2005 10:27 am 
Offline
User avatar

Joined: Wed Nov 10, 2004 6:47 pm
Posts: 1845
*bump a crazy old topic*

This seems to be more of an issue for me now than it was back in March. I find myself having to log onto these boards 4 times a day... even after checking the seemingly useless "automatically log in every time I visit" button.

Can't we just stay logged in indefinitely? Is there any way to remove the cookie expiration or whatever the problem is?


Top
 Profile  
 
 Post subject:
PostPosted: Sat Dec 17, 2005 11:14 am 
Offline

Joined: Wed Nov 16, 2005 6:38 pm
Posts: 47
I know you may have checked this already but check your cookie settings. I haven't had any trouble with the boards and I have used IE 6 and FF 1.5


Top
 Profile  
 
 Post subject:
PostPosted: Sat Dec 17, 2005 1:05 pm 
Offline
User avatar

Joined: Wed Aug 03, 2005 3:15 pm
Posts: 394
I have no problems staying logged in what-so-ever. This may be a dumb question, but do you check the box that says Always Stay Logged In? ... or whatever it says?


Top
 Profile  
 
 Post subject:
PostPosted: Sat Dec 17, 2005 4:01 pm 
Offline
Site Admin
User avatar

Joined: Mon Sep 20, 2004 6:04 am
Posts: 3488
Location: Indianapolis
It was Zone Alarm causing that problem for me. After I downloaded a newer version of it, it now always logs me in automatically like it should.


Top
 Profile  
 
 Post subject:
PostPosted: Sat Dec 17, 2005 5:13 pm 
Offline
User avatar

Joined: Wed Nov 10, 2004 6:47 pm
Posts: 1845
Perhaps it is a cookie setting of mine.. I'll have to scope it out.

Although that would be strange, since this is the only board I visit which gives me a problem, and other boards (even other phpbb boards) don't have the issue.


Top
 Profile  
 
 Post subject:
PostPosted: Sun Dec 18, 2005 1:13 pm 
Offline

Joined: Sat Dec 25, 2004 3:51 pm
Posts: 4
Yeah, watch for programs like ZoneAlarm that bork cookies.

I've had several users report this same problem on a board I run, and was never able to reproduce the error reliably. However, completely removing the cookies used for this board then re-logging in (and choosing to remain logged in) solved the issue for them. For now anyway.

Back to lurking ...


Top
 Profile  
 
 Post subject:
PostPosted: Wed Dec 21, 2005 6:12 am 
Offline

Joined: Sun Sep 18, 2005 3:26 pm
Posts: 29
koitsu wrote:
If money is a big stickler, and you'd prefer to use an actual PC for a NAT+fw unit (vs. an embedded device), you might consider SmoothWall. I'm told the thing is *wonderful*, and from what little I've read about it, it seems to be so.


Smoothwall is decent, been awhile since I used it but I had it running on a AMD 386 dx 40 and it seemed to be keeping up. As long as the harddrive wasn't accessed to much anyway. But I thought I'd mention an alternative: Clarkconnect. Has (I think) many more features - it's basically a redhat (fedora) distro altered to be a NAT and..well go see if you want.


Top
 Profile  
 
 Post subject: discount computer parts
PostPosted: Sat Mar 25, 2006 6:51 am 
Fight Spam


Top
  
 
PostPosted: Sat Mar 25, 2006 9:46 am 
Offline
User avatar

Joined: Fri Nov 12, 2004 2:49 pm
Posts: 7320
Location: Chexbres, VD, Switzerland
discount computer parts wrote:

Quoting from the website this link leads :
Quote:
I got a spam and it led me to this site
We get e-mail about once a month that says that. What's happening - are we spamming ads out for our anti-spam site?

No. No way.

There are two things that we have seen happen semi-regularly in the past.

1. Some ISPs, when they cancel a web site because the owner has spammed an ad for it, point the URL at an anti-spam site. We believe that this is done in order to help educate the general public about spam, and to show that the ISP is anti-spam. Unfortunately, because this is done with no explanation, it makes it look as if we spammed an ad linking to our site.
2. Sometimes spammers get mad at anti-spammers and send out spam with the anti-spammer's name, address or web site in the spam. This is called a joe-job and some people take it as evidence that they've "arrived" as anti-spammers if someone joe-jobs them. It's done, of course, to try to create trouble for the person being joe-jobbed.

Which of the two is the case here ?

_________________
Life is complex: it has both real and imaginary components.


Top
 Profile  
 
 Post subject:
PostPosted: Sat Mar 25, 2006 10:05 am 
Offline

Joined: Sun Sep 19, 2004 11:12 pm
Posts: 19354
Location: NE Indiana, USA (NTSC)
It was an edit. I replaced a spammer's text with my own, in order to show that spam is still happening while not allowing the spammer's message to get through to end users or to search engines. I did not intend it to be a joe job.


Top
 Profile  
 
 Post subject:
PostPosted: Fri Nov 23, 2007 5:46 am 
Offline
User avatar

Joined: Mon Sep 27, 2004 8:33 am
Posts: 3715
Location: Central Texas, USA
Great, now I'm encountering this can't-stay-logged-in issue. Started a few days ago, had never happened to me before. I go to the main page, I'm logged in and see new message icons. Open each forum in separate tabs, and every one of them has me logged out. Close everything and open main page again and I'm logged out. Log back in and the next few visits work normally, then it happens again. This is the second or third time it's done it now. My phpbb2mysql_data cookie is still there, expires in a year. I just don't get it. Guess I'll just have to copy the login form to a local HTML file, fill in the username and password permanently, add some Javascript to auto-submit it when opened, then go to that page whenever I want to get to Nesdev.


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 15 posts ] 

All times are UTC - 7 hours


Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group