Per design:
https://docs.google.com/a/canonical.com/document/d/1VajNkWbBH61iVixXJAmOvNGiG__GWQTMXGNOZijXWJw/edit#heading=h.6zhf6wqejmh6
(search for "passcode incorrect")
They want us to factory-reset the phone after 10 failed entries. While
this isn't a delay, it solves the same security problem
** Tags added: rtm14
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1347907
Title:
create a delay for password failure attempts
To manage notifications about this bug go to:
https://bugs.launchpad.n
I've added an ubuntu-ux task, because I'd like guidance for how this is
presented to the user.
My thinking from a technical POV is that we can use a PAM module
(pam_tally2) to record failed logins. The timing is configurable with
it, but the default behavior is to just silently fail. That is, on
Oh and one security facet of pam_tally2 is that because we're not using
the split greeter, we'd have to store the tally record in the user's
home directory. I don't think this is a security risk, since if you
have access to the home directory, you don't need to bother with being
locked out. And t
** Also affects: ubuntu-ux
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1347907
Title:
create a delay for password failure attempts
To manage notificati
** Also affects: unity8 (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1347907
Title:
create a delay for password failure attempts
To manage noti
