Educause Security Discussion mailing list archives

Re: passworded screen savers with timeouts, why?

From: Valdis Kletnieks <Valdis.Kletnieks () VT EDU>
Date: Fri, 15 Dec 2006 13:54:57 -0500

On Fri, 15 Dec 2006 11:42:03 MST, Jim Dillon said:

Adding a screen-blanker policy can add a layer of slightly less
cumbersome yet "passer-by" defending security mechanism.  Locking a
session out after five minutes can be a real pain to the user if a full
login following policy (say 20 character passphrase, or 10 character
hardened gibberish) has to occur every five minutes of inactivity.  I
can easily be caught reading and re-reading a particularly provocative
email for more than five minutes.


Amen to that - if you decide "lock after N minutes", being able to also
do a "blank after N-1 minutes" is very helpful.  This way, if you're
actually there but reading the screen, a simple whap of the mouse or
the shift key or something will restore things, but if you're not, it
will lock in another 60 seconds....

Attachment: _bin
Description:

Current thread:

passworded screen savers with timeouts, why? Michael Fox (Dec 14)
- <Possible follow-ups>
- Re: passworded screen savers with timeouts, why? Selden E Ball Jr (Dec 14)
- Re: passworded screen savers with timeouts, why? Chris Green (Dec 14)
- Re: passworded screen savers with timeouts, why? Bob Kehr (Dec 14)
- Re: passworded screen savers with timeouts, why? Bruce Curtis (Dec 14)
- Re: passworded screen savers with timeouts, why? Chris Green (Dec 14)
- Re: passworded screen savers with timeouts, why? Jim Dillon (Dec 15)
- Re: passworded screen savers with timeouts, why? Valdis Kletnieks (Dec 15)
- Re: passworded screen savers with timeouts, why? Waller, Michael A. (HSC) (Dec 15)
- Re: passworded screen savers with timeouts, why? Geoffrey S. Nathan (Dec 15)