Sunday, October 11, 2015

New FogBugz Security Features

Tim Kington:

It’s very easy to set up – just enable two-factor authentication on the user preferences page and we’ll walk you through it. You’ll need an authentication app on your phone, and then it’s as easy as scanning a QR code. Once two-factor authentication is turned on, you’ll be asked for a code from the app each time you log in. This means even if someone gets your password, they can’t get into your account without the current valid code.


To this end, we have added a new Session Management page that administrators can access from the gear menu. This page displays all of the active login sessions, the IP addresses they originated from, and the time of last access. It also gives you three ways to invalidate tokens – you can delete individual tokens, all of the tokens for a user account, or you can choose the nuclear option and reset everything in the site.


On the case page, Administrators can now completely delete any event (comments, edits, emails) by entering edit mode and clicking the ‘X’ next to it.

I requested the latter two features long ago. It’s nice to finally see them implemented.

Comments RSS · Twitter

Leave a Comment