[geeks] Mandatory password changes
Bill Bradford
mrbill at mrbill.net
Sun Dec 10 13:29:09 CST 2006
On Sun, Dec 10, 2006 at 01:30:13PM -0500, Phil Stracchino wrote:
> 1. 90% of the passwords in the system will be "cat", "dog", or the
> ever-popular "GOD".
> 2. 90% of your employees will switch back and forth between the same
> two passwords at 30-day intervals.
$WORK prevents this by enforcing strong passwords (uppercase/lowercase,
symbols/numerals, etc).
> 3. 90% of your employees will have their current password written on a
> Post-It note on their monitor or, at best, in their desk drawer.
Current policy is password changes every 90 days, and you can't use a
password that has the same characters in the same positions as your old
password, nor can you re-use any of the last six passwords you've had.
This of course doesn't stop the post-it-note problem...
Bill
--
Bill Bradford
Houston, Texas
More information about the geeks
mailing list