Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Password Storage

From: c.brace () lamp ac uk
Date: 2 Aug 2006 11:36:21 -0000
Doug

It all depends on the strength of the passwords that you are using, it's a fine balance between providing passwords 
that are strong enough to be effective, simple enough to be remembered by your users.

No matter how simple your passwords are, you will have some users who will insist on writing their passwords down 
somewhere (Check desks, under keyboards, in their top drawer, on their whiteboard, in the pile of post it notes stuck 
to the side of their monitor) let's face it the only way that we are going to stop some users from writing them down is 
to cut off their hands.

probably the best thing to do is to escalate the privaliges for their accounts as and when they are required. (OK this 
is slightly more admin work, but having those servers constantly available sounds like a bad idea)

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: