Suggested changes to MITM attack detection messages
-
This post generated by Google Translate.
I was able to confirm that the following error was output in my WordPress.
[29-Jul-2021 06:46:29 UTC] Google Authenticator plugin: Man-in-the-middle attack detected (Could also be 2 legit login attempts within the same 30 second period) [12-Aug-2021 04:04:01 UTC] Google Authenticator plugin: Man-in-the-middle attack detected (Could also be 2 legit login attempts within the same 30 second period) [31-Aug-2021 05:44:49 UTC] Google Authenticator plugin: Man-in-the-middle attack detected (Could also be 2 legit login attempts within the same 30 second period) [31-Aug-2021 05:55:28 UTC] Google Authenticator plugin: Man-in-the-middle attack detected (Could also be 2 legit login attempts within the same 30 second period)When I investigated, I got this message when I logged in using the same OTP.
When I first saw this message, I was afraid of MITM attacks.
It’s not very good to say so at the beginning of a line, even though no MITM attacks have actually occurred.Therefore, we propose to change the message content as follows.
Google Authenticator plugin: 2 legit login attempts within the 30 second period by same OTP detected Could be a Man-in-the-middle attack, so investigate immediately!
- The topic ‘Suggested changes to MITM attack detection messages’ is closed to new replies.
