Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Password Expatriation notification

From: Ken Connelly <Ken.Connelly () UNI EDU>
Date: Tue, 17 Aug 2010 14:00:00 -0500
We warn people (faculty, staff, and students) two weeks and one week in
advance of their password expiration.  I've not heard of anyone here
interpreting that as a phishing attempt, but I suppose some may have
thought that.

- ken

James Farr '05 wrote:

We recently implemented a policy where the users receives an email 30 days
before the password is set to expire.   Sure enough people thought this was
a phishing attempt.   However, since we have some off campus users that may
never step foot on campus email seemed to be the only way to notify
everyone.
How do others notify their campus about passwords expiration?  
How often do you send those reminders?


IITS will never ask you for your password.  Never email your password to
anyone.

James Farr
Information Security Officer
Instructional Technologist
Utica College
jfarr () utica edu
315-223-2386
  


-- 
- Ken
=================================================================
Ken Connelly             Associate Director, Security and Systems
ITS Network Services                  University of Northern Iowa
email: Ken.Connelly () uni edu   p: (319) 273-5850 f: (319) 273-7373
Previous By Date Next
Previous By Thread Next

Current thread: