BBPress seems to use the kind of cookie that resides on the user’s machine unless they actively log out.
Can anyone help me modify/ add custom code (or point me to a useful plug-in ) so that its lifetime is limited to the session only?
Also, should I be using something like session_cache_limiter(‘nocache’) for further privacy, or is this already taken care of?
I have recently installed the excellent Private Forums plug-in as an alternative to using the more cumbersome HTTP authentication method, which has prompted me to think about this potential security issue. Private Forums is only truly secure if the user remembers to log out.
- You must be logged in to reply to this topic.