diff -r 63016f784d88 MoinMoin/config/multiconfig.py
--- a/MoinMoin/config/multiconfig.py	Mon Apr 05 23:37:52 2010 +0200
+++ b/MoinMoin/config/multiconfig.py	Wed Apr 07 11:19:40 2010 +0200
@@ -790,6 +790,8 @@
     ('password_checker', DefaultExpression('_default_password_checker'),
      'checks whether a password is acceptable (default check is length >= 6, at least 4 different chars, no keyboard sequence, not username used somehow (you can switch this off by using `None`)'),
 
+    ('recovery_token_lifetime', 12, 'time in hours a recovery token is valid.'),
+
   )),
   # ==========================================================================
   'spam_leech_dos': ('Anti-Spam/Leech/DOS',
diff -r 63016f784d88 MoinMoin/user.py
--- a/MoinMoin/user.py	Mon Apr 05 23:37:52 2010 +0200
+++ b/MoinMoin/user.py	Wed Apr 07 11:19:40 2010 +0200
@@ -990,7 +990,7 @@
         except ValueError:
             return False
         # only allow it to be valid for twelve hours
-        if stamp + 12*60*60 < time.time():
+        if stamp + int(self._cfg.recovery_token_lifetime)*60*60 < time.time():
             return False
         # check hmac
         # key must be of type string