Educause Security Discussion mailing list archives

Re: Current Best Practice regarding Password Change policy

From: "Scott O. Bradner" <sob () HARVARD EDU>
Date: Fri, 24 Sep 2010 09:22:02 -0400

(Anybody want to publicly admit they were able to sell the auditors
on what Spaf said, and managed to eliminate mandatory changes?)



see next to last pp of http://www.security.harvard.edu/enterprise-security-policy/2-confidential-info/policies-2_4

Scott

Current thread:

Current Best Practice regarding Password Change policy Barbara Deschapelles (Sep 24)
- Re: Current Best Practice regarding Password Change policy Greg Washburn (Sep 24)
- Re: Current Best Practice regarding Password Change policy Valdis Kletnieks (Sep 24)
  - Re: Current Best Practice regarding Password Change policy Scott O. Bradner (Sep 24)
  - Re: Current Best Practice regarding Password Change policy Roger Safian (Sep 24)
    - Re: Current Best Practice regarding Password Change policy Dave Koontz (Sep 24)
    - Re: Current Best Practice regarding Password Change policy Koski, David (Sep 24)
    - Re: Current Best Practice regarding Password Change policy John Ladwig (Sep 24)
    - Re: Current Best Practice regarding Password Change policy Jack Reardon (Sep 24)
    - Re: Current Best Practice regarding Password Change policy John Ladwig (Sep 24)
    - Re: Current Best Practice regarding Password Change policy Dexter Caldwell (Sep 24)
    - Re: Current Best Practice regarding Password Change policy Doty, Timothy T. (Sep 24)
    - Re: Current Best Practice regarding Password Change policy Dexter Caldwell (Sep 24)
    - Re: Current Best Practice regarding Password Change policy Joel Rosenblatt (Sep 24)

(Thread continues...)