[neziniux]

Hello there, you masters of bbPress!

I am very new to this software, so please have patience with me. I installed it some days ago and noticed a strange thing – whenever I restart the pc the next day – I am automatically logged on. It is very practical but since I am paranoid about security, it does not contribute to peace of mind. It does not matter if this is a Firefox2 or IE7 browser, I noticed the symptom on both.

Has it something to do with session cookies on my system? I don’t have this issue with 2 of my WPs nor any other website. My bbPress and wp are separate bodies, not integrated.

I find bbPress very cute and I hope I can make it work somehow with your help.

[neziniux]

I did it again (restarting the pc) and now i see that this forum does the same thing – i did not need to log in to post this message. Ok, i will accept this as a normal bbPress feature, am i right?

[fel64]

I don’t know about “feature”, but all it means is that it sets a cookie that isn’t cleared until a week from when you log in. Unless you log out, that cookie remains. In WordPress, you can untick the “Remember Me” thing; I don’t know if bbPress can (yet) be configured to not remember you like that.

If you’re worried, just log out when you’re done.

[neziniux]

Thank you. Well, if it is save enough, then i should leave it as it is. I am just worried about the server because i am expecting a few dosen of members. My 1st website was overwritten once (aaaaahhh!…), therefore i am interested in all the measures against bad luck.

I wonder if there is some code in bbPress where i can change its cookie’s life duration? I think i came accross it somewhere in but cannot remember now where exactly.

[fel64]

The #1 thing to do is to backup regularly. You can’t be 100% sure that you’re safe – but if you have a backup it’s not a particularly big deal. If you use WordPress use the backup plugin for that and include the bb tables too.

If someone else users your computer and you’re still logged in, then they have access to everything you have access to. You can’t do much damage through bbPress; deleting posts etc. isn’t permanent, for example. What you should be concerned about (if you reckon someone nasty is going to get to your computer at all) is your FTP, database and hosting admin access.

[neziniux]

all right, i will sleep well then