As a server admin for a number of Linux/UNIX hosts, I would advise that sudo is left as-is and the notification at login is updated as suggested by the original submitter of the bug. Showing the length of a password at the sudo prompt makes it significantly easier to perform a brute force attack on the password as the hacker now knows to brute force with the correct length without any trial and error required.
-- Entering password in Terminal gives no visual feedback https://bugs.launchpad.net/bugs/194472 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs