Security Basics mailing list archives

Re: passwords

From: "Chris Berry" <compjma () hotmail com>
Date: Wed, 19 Feb 2003 13:08:46 -0800

From: "eer7y3n0h" <eer7y3n0h () nuvox net>
Yes it makes sense.

But only if strong passwords are enforced as well.  Let them use leet
and they might even forget it's a chore.
And really, every password they have should be changed, not just the
mail

I agree, we use very strong passwords (enforced by a custom passwordchecking program that scores them before they are allowed) but only changeevery six months to avoid the sticky note problem. However, when we change,we change ALL the passwords, OS, database, email, websites, you name it.


Chris Berry
compjma () hotmail com
Systems Administrator
JM Associates

"Quick, easy, or cheap; pick any two."

_________________________________________________________________

Protect your PC - get McAfee.com VirusScan Onlinehttp://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963

Current thread:

Re: passwords, (continued)
- Re: passwords simsjs (Feb 19)
- Re: passwords multics (Feb 19)
  - Re: passwords jl (Feb 20)
- Re: passwords Ross Nelson (Feb 19)
- RE: passwords Tim V - DZ (Feb 19)
- Re: passwords eer7y3n0h (Feb 19)
- Re: passwords Chris Berry (Feb 19)
- RE: passwords Robinson, Sonja (Feb 19)
- RE: passwords Vince Dang (Feb 20)
- RE: passwords Chris Berry (Feb 20)
- Re: passwords Chris Berry (Feb 20)
- RE: passwords Shanna Daly (Feb 20)
- RE: passwords Trevor Cushen (Feb 20)
  - Re: passwords Glen Mehn (Feb 20)
  - RE: passwords Tim Heagarty (Feb 20)
- RE: passwords Högman, Lars (Feb 22)