[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

AD and enforced password policies

Subject: AD and enforced password policies
From: gary.buhrmaster at gmail.com (Gary Buhrmaster)
Date: Tue, 3 Jan 2012 00:05:00 +0000
In-reply-to: <CAAAwwbUXNEUCqirVE+KidGVjn2nt=r_rY5EhBu_w7uQXcZEh_g@mail.gmail.com>
References: <E36EB8E60B5EB244AAFCFEF0AF0A116D0310620699@MS-EX7MB-P03.corp.se.sempra.com> <CAAAwwbUXNEUCqirVE+KidGVjn2nt=r_rY5EhBu_w7uQXcZEh_g@mail.gmail.com>

On Mon, Jan 2, 2012 at 22:32, Jimmy Hess <mysidia at gmail.com> wrote:
....
> The sole root cause for "easily guessable passwords"  is  not  lack of
> technical restrictions. It's also:  lazy or limited memory humans who need
> passwords that they can remember.
>
> Firstname1234! ? ?is very easy to guess, and meets complexity and usual
> length requirements.

Obligatory xkcd reference:  http://xkcd.com/936/

Gary

Follow-Ups:
- AD and enforced password policies
  - From: smb at cs.columbia.edu (Steven Bellovin)

References:
- AD and enforced password policies
  - From: BEJones at semprautilities.com (Jones, Barry)
- AD and enforced password policies
  - From: mysidia at gmail.com (Jimmy Hess)

Prev by Date: AD and enforced password policies
Next by Date: AD and enforced password policies
Previous by thread: AD and enforced password policies
Next by thread: AD and enforced password policies
Index(es):
- Date
- Thread