Hi Bob, If it is what I am thinking... I didn't think this day would come. There are hashes of known, breached passwords generally collected. Here's the most prominent one - https://haveibeenpwned.com/Passwords
There are blog posts on the same site explaining what it is, how to use that collection, etc. Would be fun indeed if the collection can be brought to zOS and RACF/ACF2 adapted to look up a new pw in it, before using/setting it. On Thursday, February 29th, 2024 at 17:13, Robert S. Hansel <r.han...@rshconsulting.com> wrote: > Hi Linda, > > How do you define "common password"? > > Regards, Bob > > Robert S. Hansel 2024 IBM Champion > Lead RACF Specialist > RSH Consulting, Inc. > 617-969-8211 > www.linkedin.com/in/roberthansel > www.rshconsulting.com > > -----Original Message----- > Date: Wed, 28 Feb 2024 15:35:54 -0600 > From: Linda Hagedorn linda.haged...@gmail.com > > Subject: RACF, external password management > > My company wants an external password manager to substitute for RACF. > I need to know if anyone has experience with this, or common password > matching in RACF. > > Background > Regulations NYDFS require preventing common passwords to be used. > Vendor tools (Courion, CyberArk, etc.) have a corpus to match password > changes to prevent the use of common passwords. > RACF passwords can be changed from TSO, the internal reader, JCL, Candle > Session manager, etc., so trying to block password changing through RACF and > forcing everyone through one of these 3rd party tools may be near impossible. > > Any input is appreciated. Thanks! Linda > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
