----- Original Message ----- From: Jan MOEYERSONS
>Date: Jan 8, 2007 5:40 AM
Subject: Re: Special characters in passwords was Re: RACF - Password rules. To: [email protected]
<SNIP>
If it is too complicated, people will defy it by noting the "strong" password on a Post-It(tm). Bye-bye, security. Jantje.
Or, someone will write a Rexx program that generates conforming passwords using some simple (and predictable) algorithm. Eventually everyone ends up using the same "strong" password. :-)
I've never understood why security administrators are so fond of dreaming up password rules that only serve to reduce the domain of acceptable passwords, thereby making them *easier* to crack rather than harder.
---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
