Firewall Wizards mailing list archives
RE: "Proactive" Password Checking
From: Matt Carothers <matt () telepath com>
Date: Thu, 18 Nov 1999 12:52:57 -0600 (CST)
On Wed, 17 Nov 1999, Moore, James wrote:
The only thing I'd add to Russ' comments are that passfilt.dll's activities must be constrained to assure the server does not get bogged down
Nod, not to mention the fact that the more rules you apply to your passwords, the smaller your keyspace becomes. Eventually you reach a point of diminishing returns.
I still feel this belongs on the "back end". PDCs have more to do than pound on passwords.
Perhaps a better solution (or a complementary one) would be to run a heavyweight password cracker at regular intervals against all accounts and force users with weak passwords to change them at their next login. - Matt
Current thread:
- Re: "Proactive" Password Checking, (continued)
- Re: "Proactive" Password Checking Joseph S D Yao (Nov 17)
- RE: "Proactive" Password Checking Moore, James (Nov 15)
- Re: "Proactive" Password Checking Andreas Gunnarsson (Nov 15)
- RE: "Proactive" Password Checking sean . kelly (Nov 15)
- Re: "Proactive" Password Checking Eric Toll (Nov 15)
- RE: "Proactive" Password Checking Moore, James (Nov 17)
- RE: "Proactive" Password Checking Russ (Nov 17)
- Re: "Proactive" Password Checking Aleph One (Nov 18)
- RE: "Proactive" Password Checking Vin McLellan (Nov 17)
- RE: "Proactive" Password Checking Moore, James (Nov 17)
- RE: "Proactive" Password Checking Matt Carothers (Nov 21)
- Re: "Proactive" Password Checking Barney Wolff (Nov 17)
- Re: "Proactive" Password Checking Eric Budke (Nov 18)