Bug 215547
Summary: | Bugzilla frequently logs out behind a firewall | ||
---|---|---|---|
Product: | [Community] Bugzilla | Reporter: | Amit Bhutani <amit_bhutani> |
Component: | Bugzilla General | Assignee: | Bernd Groh <bgroh> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | David Lawrence <dkl> |
Severity: | high | Docs Contact: | |
Priority: | medium | ||
Version: | 2.18 | CC: | ebaak, john_hull, kbaker, ltroan, wwlinuxengineering |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | 2.18 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2006-11-15 21:53:21 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Amit Bhutani
2006-11-14 16:45:46 UTC
It's worth noting that Dell's proxy servers are actually a farm, with round robin DNS set to 30 seconds. So every 30 seconds the clients will be using a different proxy. So client IP-based cookies for authentication won't work well, and is most likely the cause. Well that would be the problem in this case. Is this something that has changed recently since (as far as I know) dell.com accounts have been working up until recently? Nothing has changed on the Bugzilla code side for quite a while now. no change here, it's been broken for a long time. Amit's just feeling the most pain right now. Ok, I changed the configuration so that it will accept an IP that remains within a /24. But perhaps I should have asked Matt how big is the round robin pool first? How about a /16 :-) Seriously. The Dell Austin pool looks like it bounces between 143.166.99.x and 143.166.217.x. ok, done. Still working from home. Will provide feedback once I'm behind the firewall (later today). Amit, putting this in NEEDINFO pending your response to "Does this change resolve the problem?" Also, I'm curious why Dell has problems with Red Hat's Bugzilla but not the Novelll/SuSE or kernel.org versions? Is Red Hat "avant garde" or in the "Dark Ages" regarding our Bugzilla version compared to the other two examples? It is a configuration option in all bugzillas. Ours was configured to be more strict than others. AIUI this is the first complaint we have had about it. Those may be using a newer version of Bugzilla which allows user to disable the IP address tracking feature of Bugzilla as a preference. This causes a slight loss in security as it makes it a little easier for someone to spoof another's account. We do not allow this to be disabled currently. So, as of this morning (brand new), bugzilla login page has an option exposed to users labeled "Restrict this session to this IP address". This is checked by default. If you login with this option checked, the behavior is still as before and frequent (every 30 secs) logins are required. Unchecking the box, makes your sessions persist and sessions persist like a charm!! Thanks for implementing. We can close this request now. Now, if we could only get some of the same magic from Dave/Kevin in our (other) master bugzilla woes tracker i.e. bz# 213248, that would be grrrreat!!!!! ;-) |