@Matthew: I think we have to agree to disagree that having to press the enter key "substiantially" increases the required time to enter the pin. 25% of very short is still quite short :) Also the variable pin length would allow you to enter a 3 digits pin if you don't care about security and really don't to press 5 keys :)
Now on a serious note, if we allow variable pin lengths we have to use the enter key, because we can't get the password length from PAM, we'd need to store it externally which is something I'm sure Jamie disagrees with and is also not really feasible from a technical point of view. Regarding the scrolling field, that's also not really true as we use the exact same visuals already for the passphrase and the passkey logins, both cope with a flexible amount of letters/digits without having to scroll. The passphrase one already allowing an infinite length (It shrinks the dots and reduces spacings between them as the passphrase grows). Note that the passkey screen is also used for SIM PIN/PUK entry which allows 4-8 digits. If you have a SIM PIN enabled, I find it quite confusing that you get 2 (3 on dual sim) unlock screens, one after another, all looking exactly the same, except the first ones requires you to confirm the ping with enter, the last one doesn't. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unity8 in Ubuntu. https://bugs.launchpad.net/bugs/1363214 Title: [System Settings] [design] allow Passcodes of variable length instead of just 4 digits Status in Ubuntu UX bugs: In Progress Status in “ubuntu-system-settings” package in Ubuntu: Confirmed Status in “unity8” package in Ubuntu: Confirmed Bug description: Currently when setting a Passcode on the device, it must be 4 digits. This is artificially limiting. Other platforms (eg Android) allow longer Passcodes. It has always been my understanding that we should support Swipe, Passphrase and Passcode where Passphrase and Passcode can be arbitrarily long. However, once longer Passcodes are supported, we will have to add an Enter key. Right now, the lockscreen checks the Passcode once 4 digits are added so that you don't have to press Enter. I guess this was done for usability, but would be a security issue because an attacker can easily determine the Passcode length, which makes it easier to for an attacker to guess the Passcode. Eg, if I have a 5 digit Passcode set, then an attacker need only type '11111' and know that the Passcode is only five characters. Now, a Passcode isn't strong to begin with and an automated attack could rather quickly brute force Passcodes, but we shouldn't make it easier for someone manually trying to guess the Passcode. The passphrase lockscreen prompt correctly allows variable length passphrases and requires you to press Enter. I suggest moving the 'X' up t the left of '0' and an Enter symbol to the rigth of '0'. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-ux/+bug/1363214/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
