"passwords incremented by 1 or 2 characters" This is the biggest issue, that and the fact that if we do a password reset, say to Password1 [1], then the user tends to then just use Password2, 3, 4 etc. I want to force the issue away. I expired all the passwords last night, and they have been inscructed NOT to use anything like that, proof will be tomorrow, when I lophtcrack the domain ;) Then there will be words and no mistake.
[1] I find it unbelivable that in 2003, thats considered a secure password. G. On Tue, Jan 13, 2009 at 7:24 PM, Sherry Abercrombie <[email protected]>wrote: > Hmm, that looks interesting. I think we'll take a look at it. > > Sadly, back in the days when I was a Novell administrator, (wasn't that TLA > CNA???) you could force password policies such as no dictionary words, no , > no consecutive letters/numbers, that kind of thing. With AD, I can use my > name with an upper case in it, and a couple of numbers and it meets the > password complexity of AD, and can increment it by 1 number, now that is > sad. > > On Tue, Jan 13, 2009 at 12:35 PM, Christopher Bodnar < > [email protected]> wrote: > >> Have you taken a look at this? >> >> >> >> http://www.anixis.com/products/ppe/default.htm?anixispid=0A1004 >> >> >> >> >> >> >> >> Chris Bodnar, MCSE >> Sr. Systems Engineer >> Distributed Systems Service Delivery - Intel Services >> Guardian Life Insurance Company of America >> Email: [email protected] >> Phone: 610-807-6459 >> Fax: 610-807-6003 >> ------------------------------ >> >> *From:* Gavin Wilby [mailto:[email protected]] >> *Sent:* Tuesday, January 13, 2009 12:30 PM >> *To:* NT System Admin Issues >> *Subject:* Preventing certain passwords >> >> >> >> >> >> >> >> >> >> >> >> >> ------------------------------ >> >> * This message, and any attachments to it, may contain information that >> is privileged, confidential, and exempt from disclosure under applicable >> law. If the reader of this message is not the intended recipient, you are >> notified that any use, dissemination, distribution, copying, or >> communication of this message is strictly prohibited. If you have received >> this message in error, please notify the sender immediately by return e-mail >> and delete the message and any attachments. Thank you. * >> > > > > -- > Sherry Abercrombie > > "Any sufficiently advanced technology is indistinguishable from magic." > Arthur C. Clarke > > > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
