On Nov 29, 2007 7:01 AM, Carl Lowenstein <[EMAIL PROTECTED]> wrote: > On Nov 29, 2007 6:07 AM, Todd Walton <[EMAIL PROTECTED]> wrote: > > What security could there be in requiring passwords to be at least a > > day old before you can change them? > > At the very least, it keeps you from changing your password and > immediately changing it back to its previous value.
Most password systems these days won't let you use your last 3 or so passwords, anyway. I think the requirement of keeping them around a day might be in the memorability. If you could change your password three times in one day, it might be difficult to remember which of those is actually your current password. -- Brad Beyenhof http://augmentedfourth.com Silence will save me from being wrong (and foolish), but it will also deprive me of the possibility of being right. ~ Igor Stravinsky -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
