From b4e4669ca37b3fbd788131cb39ac2e0240da9af3 Mon Sep 17 00:00:00 2001
From: mbugeia <kanboard@mbugeia.eu>
Date: Wed, 14 Oct 2015 15:44:44 +0200
Subject: [PATCH] Fix security issue

---
 conf/config.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/conf/config.php b/conf/config.php
index ece12e9..6cdda70 100644
--- a/conf/config.php
+++ b/conf/config.php
@@ -166,7 +166,7 @@ define('REVERSE_PROXY_DEFAULT_ADMIN', 'yuno_admin');
 define('REVERSE_PROXY_DEFAULT_DOMAIN', 'yuno_domain');
 
 // Enable/disable remember me authentication
-define('REMEMBER_ME_AUTH', true);
+define('REMEMBER_ME_AUTH', false);
 
 // Enable or disable "Strict-Transport-Security" HTTP header
 define('ENABLE_HSTS', true);
@@ -197,4 +197,4 @@ define('BRUTEFORCE_LOCKDOWN_DURATION', 15);
 
 // Session duration in second (0 = until the browser is closed)
 // See http://php.net/manual/en/session.configuration.php#ini.session.cookie-lifetime
-define('SESSION_DURATION', 0);
+define('SESSION_DURATION', 1);