all guides out there lead to configuration open to brute-force attacks
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
google-authenticator (Ubuntu) |
Expired
|
Undecided
|
Unassigned |
Bug Description
I posted an issue at Google Code about this package: https:/
All the guides out there (e.g.: http://
A possible solution could be to rename this package, which will invalidate all existing manuals, and to place a new and secure instruction on the ubuntu channels for the new package name.
tags: | added: google-authenticator |
tags: | added: brute-force |
Status changed to 'Confirmed' because the bug affects multiple users.