"So best practice now is to use passphrases." Agreed. No to mention
current recommendations for loooooong passwords. However even passphrase
can be "common". AFAIK the only solution would be ICHPWX11. The exit can
enforce some syntax, i.e. mandatory punctuation & capital letter &
lowercase & numeric. However even the above is not enough, since on of
"common" passwords is P@ssw0rd. So, we need a list of common password to
reject them. Now the most important: WHO CREATES THE LIST? And how often
it is updated? BTW: I would think about MFA. Even long and complex
password can be peeked.
--
Radoslaw Skorupka
Lodz, Poland
W dniu 26.11.2024 o 20:25, Joe Monk pisze:
So best practice now is to use passphrases.
Joe
On Tue, Nov 26, 2024 at 1:20 PM Grace Godfrey <
[email protected]> wrote:
Thank you David, Joe, and David for the referrals. I'm reading them now.
SYS1.SAMPLIB(IRRPHREX) says error 10 will occur if a forbidden word is in
a password phrase value.
Do you know, does the forbidden word checking happens on passwords also?
Or only password phrases?
Going to the CBT TAPE next.
Grace
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
