staying logged in?

staying logged in?
by on (#1449)
Does anyone else have trouble staying logged in, or it just me? Like when I view the main index, I'll usually be logged in. When I click on a board or anything else sometimes I get logged out (but only if it's been a few hours since I last logged in, I think). It's only slightly annoying.

It doesn't happen to me on other sites using phpBB.

There's also some oddities with using Zone Alarm and logging into NESWorld's forum (I have to shut down Zone Alarm to log in). So I kinda wondered if it's related to something specific with the Parodius server (if that's even possible), or just a coincidence there.

While I'm at it, can anyone recommend another cheap or free firewall?

by on (#1478)
It sounds like a possible issue with cookies expiring, which would be generated by phpBB itself. Here's my quick test; note the Set-Cookie lines being generated by phpBB:

(19:13 jdc@pentarou) ~ $ date
MonĀ  7 Mar 2005 19:13:51 PST

(19:13 jdc@pentarou) ~ $ telnet 80
Connected to
Escape character is '^]'.
GET /bbs/ HTTP/1.0

HTTP/1.1 200 OK
Date: Tue, 08 Mar 2005 03:14:01 GMT
Server: Apache/2.0.53 (FreeBSD) mod_ssl/2.0.53 OpenSSL/0.9.7d
X-Powered-By: PHP/5.0.3
Cache-Control: no-cache, pre-check=0, post-check=0
Expires: 0
Pragma: no-cache
Set-Cookie: phpbb2mysql_data=a%3A0%3A%7B%7D; expires=Wed, 08-Mar-2006 03:14:01 GMT; path=/;
Set-Cookie: phpbb2mysql_sid=28830b05023a0ddf1dc6856b3b522ada; path=/;
Connection: close
Content-Type: text/html; charset=utf-8

Reading the FAQ ( shows the following tidbits of help:

You can increase the default length of sessions (ie. how long before a users session is considered 'dead') in Admin->General->Configuration->Cookie Settings->Session Length

If you set this number too high, I will kill you. :D I don't want to see sessions laying around on the filesystem for weeks at a time; and I won't resort to using mm to do sessions via SHM, because it'll simply grow Apache's process size over time...

In addition, the authors of this software seem to the cookie based upon a combination of things -- including your IP number -- which completely fucks people visiting from dynamic IPs. See FAQ section My AOL based users keep getting logged out!

BTW, phpBB needs to be upgraded to 2.0.13 (security holes in both .11 and .12, including someone being able to gain administrative access). :-)

by on (#1479)
Also, re: cheap firewall: I recommend the Linksys WRT54GS units if you're looking for a firewall + NAT solution. They're generally inexpensive, run Linux, and have a slew of firmwares available out there from the public (I use HyperWRT).

If money is a big stickler, and you'd prefer to use an actual PC for a NAT+fw unit (vs. an embedded device), you might consider SmoothWall. I'm told the thing is *wonderful*, and from what little I've read about it, it seems to be so.

by on (#1482)
Alright, I did the forum upgrade. I probably should check for those more often, heh.

I looked in the session length, it's 3600 seconds (so 60 minutes). Seems to be pretty reasonable as-is.

That router does sound pretty nice, I only use one PC though, so software ones seem to work well enough for now.

by on (#7496)
*bump a crazy old topic*

This seems to be more of an issue for me now than it was back in March. I find myself having to log onto these boards 4 times a day... even after checking the seemingly useless "automatically log in every time I visit" button.

Can't we just stay logged in indefinitely? Is there any way to remove the cookie expiration or whatever the problem is?

by on (#7497)
I know you may have checked this already but check your cookie settings. I haven't had any trouble with the boards and I have used IE 6 and FF 1.5

by on (#7500)
I have no problems staying logged in what-so-ever. This may be a dumb question, but do you check the box that says Always Stay Logged In? ... or whatever it says?

by on (#7506)
It was Zone Alarm causing that problem for me. After I downloaded a newer version of it, it now always logs me in automatically like it should.

by on (#7514)
Perhaps it is a cookie setting of mine.. I'll have to scope it out.

Although that would be strange, since this is the only board I visit which gives me a problem, and other boards (even other phpbb boards) don't have the issue.

by on (#7534)
Yeah, watch for programs like ZoneAlarm that bork cookies.

I've had several users report this same problem on a board I run, and was never able to reproduce the error reliably. However, completely removing the cookies used for this board then re-logging in (and choosing to remain logged in) solved the issue for them. For now anyway.

Back to lurking ...

by on (#7580)
koitsu wrote:
If money is a big stickler, and you'd prefer to use an actual PC for a NAT+fw unit (vs. an embedded device), you might consider SmoothWall. I'm told the thing is *wonderful*, and from what little I've read about it, it seems to be so.

Smoothwall is decent, been awhile since I used it but I had it running on a AMD 386 dx 40 and it seemed to be keeping up. As long as the harddrive wasn't accessed to much anyway. But I thought I'd mention an alternative: Clarkconnect. Has (I think) many more features - it's basically a redhat (fedora) distro altered to be a NAT and..well go see if you want.
discount computer parts
by on (#11171)
Fight Spam
Re: discount computer parts
by on (#11174)
discount computer parts wrote:

Quoting from the website this link leads :
I got a spam and it led me to this site
We get e-mail about once a month that says that. What's happening - are we spamming ads out for our anti-spam site?

No. No way.

There are two things that we have seen happen semi-regularly in the past.

1. Some ISPs, when they cancel a web site because the owner has spammed an ad for it, point the URL at an anti-spam site. We believe that this is done in order to help educate the general public about spam, and to show that the ISP is anti-spam. Unfortunately, because this is done with no explanation, it makes it look as if we spammed an ad linking to our site.
2. Sometimes spammers get mad at anti-spammers and send out spam with the anti-spammer's name, address or web site in the spam. This is called a joe-job and some people take it as evidence that they've "arrived" as anti-spammers if someone joe-jobs them. It's done, of course, to try to create trouble for the person being joe-jobbed.

Which of the two is the case here ?

by on (#11175)
It was an edit. I replaced a spammer's text with my own, in order to show that spam is still happening while not allowing the spammer's message to get through to end users or to search engines. I did not intend it to be a joe job.

by on (#28663)
Great, now I'm encountering this can't-stay-logged-in issue. Started a few days ago, had never happened to me before. I go to the main page, I'm logged in and see new message icons. Open each forum in separate tabs, and every one of them has me logged out. Close everything and open main page again and I'm logged out. Log back in and the next few visits work normally, then it happens again. This is the second or third time it's done it now. My phpbb2mysql_data cookie is still there, expires in a year. I just don't get it. Guess I'll just have to copy the login form to a local HTML file, fill in the username and password permanently, add some Javascript to auto-submit it when opened, then go to that page whenever I want to get to Nesdev.