serv/mox
1
0
Fork 0
mirror of https://github.com/mjl-/mox.git synced 2024-12-26 16:33:47 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

add warning about weak password when setting password via cli too

Browse source
This commit is contained in:
Mechiel Lukkien 2023-03-05 16:42:34 +01:00
parent dedc90f455
commit dfd7b721ae
No known key found for this signature in database
1 changed files with 10 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
main.go
View file

@ -957,7 +957,16 @@ The password is read from stdin. Its bcrypt hash is stored in a file named
} }
func xreadpassword() string { func xreadpassword() string {
fmt.Println("Type new password. Password WILL echo.") fmt.Printf(`
Type new password. Password WILL echo.
WARNING: Bots will try to bruteforce your password. Connections with failed
authentication attempts will be rate limited but attackers WILL find weak
passwords. If your account is compromised, spammers are likely to abuse your
system, spamming your address and the wider internet in your name. So please
pick a random, unguessable password, preferrably at least 12 characters.
`)
fmt.Printf("password: ") fmt.Printf("password: ")
buf := make([]byte, 64) buf := make([]byte, 64)
n, err := os.Stdin.Read(buf) n, err := os.Stdin.Read(buf)