Merge pull request #232 from captn3m0/warning

[security] Adds warning about PUK being default
author: drduh <github@duh.to> 2021-05-31 16:19:49 +0000
committer: GitHub <noreply@github.com> 2021-05-31 16:19:49 +0000
commit: 6490586595a9920f5fecb8f293d52076b752ca35 (patch)
tree: 276899a6f26b743291cee482123a90c50aa001be
parent: Merge pull request #231 from captn3m0/change-puk (diff)
parent: Adds warning about PUK being default (diff)
download: YubiKey-Guide-6490586595a9920f5fecb8f293d52076b752ca35.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/README.md b/README.md
index 72ab5ea..1c0a000 100644
--- a/README.md
+++ b/README.md
@@ -4,6 +4,8 @@ Keys stored on YubiKey are [non-exportable](https://support.yubico.com/support/s
 
 **New!** [drduh/Purse](https://github.com/drduh/Purse) is a password manager which uses GPG and YubiKey.
 
+**Security Note**: If you followed this guide before Jan 2021, your PUK (Pin Unblock Key) may be set to its default value of `12345678`. An attacker can use this to reset your PIN and use your Yubikey. Please see the [Change PUK](#change-puk) section for details on how to change your PUK.
+
 If you have a comment or suggestion, please open an [Issue](https://github.com/drduh/YubiKey-Guide/issues) on GitHub.
 
 - [Purchase](#purchase)
author	drduh <github@duh.to>	2021-05-31 16:19:49 +0000
committer	GitHub <noreply@github.com>	2021-05-31 16:19:49 +0000
commit	6490586595a9920f5fecb8f293d52076b752ca35 (patch)
tree	276899a6f26b743291cee482123a90c50aa001be
parent	Merge pull request #231 from captn3m0/change-puk (diff)
parent	Adds warning about PUK being default (diff)
download	YubiKey-Guide-6490586595a9920f5fecb8f293d52076b752ca35.tar.gz