django-planet
Posts
Blogs
Feeds
Authors
Posts
Blogs
Authors
Search
Home
Blogs
Luke Plant
6 digit OTP for Two Factor Auth (2FA) is brute-forceable in 3 days
May 11, 2019
6 digit OTP for Two Factor Auth (2FA) is brute-forceable in 3 days
published by
Luke Plant
in blog
Luke Plant
original entry
6 digit OTP for Two Factor Auth (2FA) is brute-forceable in 3 days
OTP/TOTP for two factor auth (2FA/MFA) is very easy to misunderstand and implement insecurely
Recent Posts
Django is now a CVE Numbering Authority (CNA)
DSF member of the month - Anna Makarudze
The State of Django 2025
On the Air for Django’s 20th Birthday: Special Event Station W2D
Django News - Django 6.0 beta 1 released - Oct 24th 2025
Django, what the JOIN? with Simon Charette
Weeknotes (2025 week 43)
PyCharm & Django annual fundraiser
Django 6.0 beta 1 released
My favorite Django packages