IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

Fix token secret length RFC compliance

Browse Source 
RFC 4226 states the following in section 4:
   R6 - The algorithm MUST use a strong shared secret.  The length of
   the shared secret MUST be at least 128 bits.  This document
   RECOMMENDs a shared secret length of 160 bits.

Reviewed-By: Jan Cholasta <jcholast@redhat.com>
This commit is contained in:
Nathaniel McCallum
2014-03-03 11:09:26 -05:00
committed by Petr Viktorin
parent 21ff4f920e
commit 0ca6653c29
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ipalib/plugins/otptoken.py
View File

@@ -59,7 +59,7 @@ TOKEN_TYPES = {
}
# NOTE: For maximum compatibility, KEY_LENGTH % 5 == 0
KEY_LENGTH = 10
KEY_LENGTH = 20
class OTPTokenKey(Bytes):
"""A binary password type specified in base32."""