Educause Security Discussion mailing list archives
Re: passworded screen savers with timeouts, why?
From: Valdis Kletnieks <Valdis.Kletnieks () VT EDU>
Date: Fri, 15 Dec 2006 13:54:57 -0500
On Fri, 15 Dec 2006 11:42:03 MST, Jim Dillon said:
Adding a screen-blanker policy can add a layer of slightly less cumbersome yet "passer-by" defending security mechanism. Locking a session out after five minutes can be a real pain to the user if a full login following policy (say 20 character passphrase, or 10 character hardened gibberish) has to occur every five minutes of inactivity. I can easily be caught reading and re-reading a particularly provocative email for more than five minutes.
Amen to that - if you decide "lock after N minutes", being able to also do a "blank after N-1 minutes" is very helpful. This way, if you're actually there but reading the screen, a simple whap of the mouse or the shift key or something will restore things, but if you're not, it will lock in another 60 seconds....
Attachment:
_bin
Description:
Current thread:
- passworded screen savers with timeouts, why? Michael Fox (Dec 14)
- <Possible follow-ups>
- Re: passworded screen savers with timeouts, why? Selden E Ball Jr (Dec 14)
- Re: passworded screen savers with timeouts, why? Chris Green (Dec 14)
- Re: passworded screen savers with timeouts, why? Bob Kehr (Dec 14)
- Re: passworded screen savers with timeouts, why? Bruce Curtis (Dec 14)
- Re: passworded screen savers with timeouts, why? Chris Green (Dec 14)
- Re: passworded screen savers with timeouts, why? Jim Dillon (Dec 15)
- Re: passworded screen savers with timeouts, why? Valdis Kletnieks (Dec 15)
- Re: passworded screen savers with timeouts, why? Waller, Michael A. (HSC) (Dec 15)
- Re: passworded screen savers with timeouts, why? Geoffrey S. Nathan (Dec 15)