From 0acd33abe3539fb51960331bf9b7fc43d64f227b Mon Sep 17 00:00:00 2001
From: Andrew Dolgov <noreply@fakecake.org>
Date: Mon, 29 Mar 2021 19:22:03 +0300
Subject: OTP: generate longer secrets, also make them easier to read/copy

---
 classes/userhelper.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'classes/userhelper.php')

diff --git a/classes/userhelper.php b/classes/userhelper.php
index ce26e6c71..0bf67243e 100644
--- a/classes/userhelper.php
+++ b/classes/userhelper.php
@@ -299,7 +299,7 @@ class UserHelper {
 					if ($user->otp_enabled) {
 						$user->otp_secret = $salt_based_secret;
 					} else {
-						$user->otp_secret = bin2hex(get_random_bytes(6));
+						$user->otp_secret = bin2hex(get_random_bytes(10));
 					}
 
 					$user->save();
-- 
cgit v1.2.3