django-planet
Posts
Blogs
Authors
Search
Posts
Blogs
Feeds
Authors
Home
Blogs
Luke Plant
6 digit OTP for Two Factor Auth (2FA) is brute-forceable in 3 days
May 11, 2019
6 digit OTP for Two Factor Auth (2FA) is brute-forceable in 3 days
published by
Luke Plant
in blog
Luke Plant
original entry
6 digit OTP for Two Factor Auth (2FA) is brute-forceable in 3 days
OTP/TOTP for two factor auth (2FA/MFA) is very easy to misunderstand and implement insecurely
Recent Posts
Full text search with Django and SQLite
Nominate a Djangonaut for the 2025 Malcolm Tredinnick Memorial Prize
LLMs are making me a better programmer...
Django News - Djangonaut Space 2025 Session 5 - Sep 12th 2025
Weeknotes (2025 week 37)
Getting Started With Open Source Through Community Events
DjangoCon US 2025
DSF at EuroPython 2025: Celebrating 20 years of Django
Django News - Last call for DjangoCon US 2025 tickets! - Sep 5th 2025
Last call for DjangoCon US 2025 tickets!