Educause Security Discussion mailing list archives
Re: Password policy
From: Gene Spafford <spaf () CERIAS PURDUE EDU>
Date: Wed, 1 Nov 2006 15:09:22 -0500
Do most enforce password expirations? I came from a large corporation and they enforced a 90 day password expiration policy. It seemed to have the effect of making passwords less secure as most would write them down in obvious places. Do most enforce a strong password policy? Any other recommendations/insights along this line would be helpful.
I can suggest my post here <http://www.cerias.purdue.edu/weblogs/spaf/ general/post-30/>, and the follow-ups. --spaf
Current thread:
- Password policy Kellogg, Brian D. (Nov 01)
- <Possible follow-ups>
- Re: Password policy Gary Dobbins (Nov 01)
- Re: Password policy Penn, Blake (Nov 01)
- Re: Password policy Buz Dale (Nov 01)
- Re: Password policy Kevin Shalla (Nov 01)
- Re: Password policy Colleen Keller (Nov 01)
- Re: Password policy Gary Flynn (Nov 01)
- Re: Password policy Harold Winshel (Nov 01)
- Re: Password policy Mclaughlin, Kevin L (mclaugkl) (Nov 01)
- Re: Password policy Gene Spafford (Nov 01)
- Re: Password policy Geoff Nathan (Nov 01)
- Re: Password policy Mclaughlin, Kevin L (mclaugkl) (Nov 01)
- Re: Password policy Kevin Shalla (Nov 01)
- Re: Password policy Daniel R Jones (Nov 01)
- Re: Password policy Jim Dillon (Nov 01)
- Re: Password policy Jim Dillon (Nov 01)
- Re: Password policy Crawford, Tim M. (Nov 01)
- Re: Password policy Bob Kehr (Nov 01)
- Re: Password policy Harold Winshel (Nov 01)
- Re: Password policy Jim Dillon (Nov 01)
(Thread continues...)