Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Demo at zeus.grnet.gr has predictable password #27

Open
daknob opened this issue May 13, 2015 · 1 comment
Open

Demo at zeus.grnet.gr has predictable password #27

daknob opened this issue May 13, 2015 · 1 comment

Comments

@daknob
Copy link

daknob commented May 13, 2015

Demo Accounts available at https://zeus.grnet.gr/ have predictable passwords equal to the e-mail address of the user.

It is recommended to pick a random password for the user with a length >= 10 characters containing at least letters and numbers.
If for some reason this is not possible, you must mandate a password change on the first login.
@ergonomicon
Copy link

Since accounts are for demo purposes we would like passwords to be friendly. The demo username is not predictable, therefore this should not be readily exploitable.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@daknob @ergonomicon