Enabling 2FA (2-Factor Authentication) for a CyberPanel user shows a QR code.
When scanning the QR code, FreeOTP (Android) shows a warning message:
Token is unsafe!
The token you are attempting to add contains weak cryptographic parameters. Use of this token is strongly discouraged! Please alert your token provider.
CANCEL / ADD ANYWAY
I’m wondering how unsafe such 2FA would be? Of course an attacker determined to crack one of my servers would eventually be aware of such vulnerability and would attempt to exploit it.
CP V2.3.4 (latest) / Ubuntu Server 22.04.6 LTS