It does not matter whether the new pin can be entered from all devices, because as it can be entered from _a_ device it is a security flaw. Default PINs are always bad, because an attacker can use them.
In the bluez stack default PINs are no use, because when using "security user" an userspace app will generate a PIN from random for that connection which is way much safer than using default PINs. I don't know about the gnome app for this, but the kde app works very well. It just generates a random PIN (or you can enter one) and then you enter this pin in the connecting device or tell it to the connecting person if the device is not yours. -- Default PIN is a security issue https://launchpad.net/bugs/52422 -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
