Educause Security Discussion mailing list archives
Re: Password policy
From: Buz Dale <buz.dale () USG EDU>
Date: Wed, 1 Nov 2006 13:52:28 -0500
Hi Brian, I've seen some schools move from a 90 to a 180 and ask for more complexity. Just changing the language from password to passphrase seems to have a good effect. Luck, Buz Kellogg, Brian D. wrote:
A couple questions:
1. Do most enforce password expirations? I came from a large
corporation and they enforced a 90 day password expiration
policy. It seemed to have the effect of making passwords less
secure as most would write them down in obvious places.
2. Do most enforce a strong password policy?
3. Any other recommendations/insights along this line would be helpful.
Thanks,
Brian
-- ---- Buz Dale buz.dale () usg edu IT Security Specialist 1-888-875-3697 Office of Information and Instructional Technology University System of Georgia
Current thread:
- Password policy Kellogg, Brian D. (Nov 01)
- <Possible follow-ups>
- Re: Password policy Gary Dobbins (Nov 01)
- Re: Password policy Penn, Blake (Nov 01)
- Re: Password policy Buz Dale (Nov 01)
- Re: Password policy Kevin Shalla (Nov 01)
- Re: Password policy Colleen Keller (Nov 01)
- Re: Password policy Gary Flynn (Nov 01)
- Re: Password policy Harold Winshel (Nov 01)
- Re: Password policy Mclaughlin, Kevin L (mclaugkl) (Nov 01)
- Re: Password policy Gene Spafford (Nov 01)
- Re: Password policy Geoff Nathan (Nov 01)
- Re: Password policy Mclaughlin, Kevin L (mclaugkl) (Nov 01)
- Re: Password policy Kevin Shalla (Nov 01)
- Re: Password policy Daniel R Jones (Nov 01)
(Thread continues...)