Arch Linux

sullivanva

Member

From: Herndon, VA USA

Registered: 2005-07-21

Posts: 126

Idea

You know what's really annoying about new people like me?

Always trying to improve things.

How about encrypted keys for logging into AUR, because the timeouts suck.

I have packages to contribute and no time to waste!

---

--HAPS

phrakture

Arch Overlord

From: behind you

Registered: 2003-10-29

Posts: 7,879

Website

Re: Idea

Ya know, I hate the timeouts too - it's real irritating especially when you just want to view something and it boots you to the "login again" screen....

---

http://phraktured.net

dtw

Forum Fellow

From: UK

Registered: 2004-08-03

Posts: 4,439

Website

Re: Idea

aye, me too

xerxes2

Member

From: Malmoe, Sweden

Registered: 2004-04-23

Posts: 1,249

Website

Re: Idea

we can do it as art.archlinux.org does it, log in once and you're done

---

arch + gentoo + initng + python = enlisy

sullivanva

Member

From: Herndon, VA USA

Registered: 2005-07-21

Posts: 126

Re: Idea

I haven't tried this, but is it possible to hijack someones package in the AUR, and put your own version out there?

That's why I'm thinking ssh keys.  There is a clear warning about the stuff, and my assumption is that as soon as it gets certified that it has to be recertified if anything changes.

---

--HAPS

cactus

Taco Eater

From: t͈̫̹ͨa͖͕͎̱͈ͨ͆ć̥̖̝o̫̫̼s͈̭̱̞͍̃!̰

Registered: 2004-05-25

Posts: 4,622

Website

Re: Idea

ssh keys? That is trying to use a mallet to fix broken glass. Wrong tool for the job.

Just use php session handling, and maybe hash the username and password and last ip address they used if you need such a thing. Then have it expire after a few days..or when the ip changes.
*shrug*

---

"Be conservative in what you send; be liberal in what you accept." -- Postel's Law
"tacos" -- Cactus' Law
"t̥͍͎̪̪͗a̴̻̩͈͚ͨc̠o̩̙͈ͫͅs͙͎̙͊ ͔͇̫̜t͎̳̀a̜̞̗ͩc̗͍͚o̲̯̿s̖̣̤̙͌ ̖̜̈ț̰̫͓ạ̪͖̳c̲͎͕̰̯̃̈o͉ͅs̪ͪ ̜̻̖̜͕" -- -̖͚̫̙̓-̺̠͇ͤ̃ ̜̪̜ͯZ͔̗̭̞ͪA̝͈̙͖̩L͉̠̺͓G̙̞̦͖O̳̗͍