default to a session cookie instead of setting an explicit timeout, weird timezone/clock skew effects on server can cause firefox and other browsers to reject the session cookie, leading to silent login failures
- [DH] FS/FS/Conf.pm
- [DH] fs_selfservice/FS-SelfService/cgi/selfservice.cgi