Educause Security Discussion mailing list archives
Re: Passwords & Passphrases
From: "Torres, Juan" <torresj () OHIODOMINICAN EDU>
Date: Mon, 19 Nov 2007 13:12:00 -0500
During the semester break we are moving to: * Cannot contain significant portions of the user's account name or full name * Must be at least seven characters in length * Must contain characters from three of the following four categories: * English uppercase characters (A through Z) * English lowercase characters (a through z) * Base 10 digits (0 through 9) * Non-alphabetic characters (for example, !, $, #, %) * Expiration: 120 days * Passwords remembered: 3 (cannot reuse last 3) Juan A. Torres Helpdesk Manager Ohio Dominican University Computer Helpdesk 1216 Sunbury Road | Columbus | OH | 43219 1.888.251.0773 | 614.253.3615 From: Brian T Nichols [mailto:bnichols () LSU EDU] Sent: Monday, November 19, 2007 12:49 PM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: [SECURITY] Passwords & Passphrases Colleagues, We are researching best practices regarding passwords and passphrases (length, complexity, expiration, etc..). Does anyone have a standard and/or policy they can share? Thanks in advance! -Brian Brian Nichols, CISSP, CISM, CISA, CIA Chief IT Security & Policy Officer Louisiana State University
Current thread:
- Passwords & Passphrases Brian T Nichols (Nov 19)
- <Possible follow-ups>
- Re: Passwords & Passphrases Torres, Juan (Nov 19)
- Re: Passwords & Passphrases J. Alex Campoe (Nov 19)
- Re: Passwords & Passphrases Roger Safian (Nov 19)
- Re: Passwords & Passphrases HALL, NATHANIEL D. (Nov 19)
- Re: Passwords & Passphrases Randy Marchany (Nov 19)
- Re: Passwords & Passphrases Randy Marchany (Nov 19)
- Re: Passwords & Passphrases Steve Worona (Nov 19)
- Re: Passwords & Passphrases Julian J Thompson (jthmpsn2) (Nov 19)
- Re: Passwords & Passphrases Bob Bayn (Nov 19)
- Re: Passwords & Passphrases Julian J Thompson (jthmpsn2) (Nov 19)
- Re: Passwords & Passphrases Shane Bishop (Nov 19)
(Thread continues...)