[Sigia-l] time-out session lengths, security, and user tasks

[Listera]

"karl fast" wrote:

> 2. I can kill the connection after a "reasonable" amount of time.
>   What's "reasonable" is up to me, the web server.

There's a variation on this: as the "magic" minute approaches, send the user
a confirmation (Your session is about to expire, do you want to continue?).
If you don't get an answer to this confirmation in a "reasonable" (short)
time :-) then kill the session. This way the session can be legitimately
prolonged, for those who need it.

Best,

Ziya