From 0cd8850c6158ca5d263c21b52b8906c974b3cfcc Mon Sep 17 00:00:00 2001
From: Paul Selkirk <paul@psgd.org>
Date: Sat, 25 Jun 2016 23:13:30 -0400
Subject: Dial back the last-gasp iterations to something sane.

I can't see protecting the well-known default password against a
brute-force attack, and 100k iterations takes almost a minute, which
makes a terrible first impression.
---
 utils/last_gasp_default_pin | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'utils')

diff --git a/utils/last_gasp_default_pin b/utils/last_gasp_default_pin
index 2d09db1..50d822f 100755
--- a/utils/last_gasp_default_pin
+++ b/utils/last_gasp_default_pin
@@ -54,7 +54,7 @@ parser.add_argument("-p", "--pin",
                     help    = "PIN plaintext before PBKDF2 processing")
 parser.add_argument("-i", "--iterations",
                     type    = int,
-                    default = 100000,
+                    default = 10000,
                     help    = "PBKDF2 iteration count")
 parser.add_argument("-d", "--derived-key-length",
                     type    = int,
-- 
cgit v1.2.3