We're told by the DSS audit guys to set the minimum password age to 1 day as
well.  If the gubmint says so, they have to have some kind of reason.
 
 
Phillip Partipilo
Parametric Solutions Inc.
Jupiter, Florida
(561) 747-6107
 
 
 

  _____  

From: Micheal Espinola Jr [mailto:[email protected]] 
Sent: Tuesday, April 28, 2009 11:50 AM
To: NT System Admin Issues
Subject: Re: Password Policy - - how do you handle this?


What is the theory behind this password age? 

Other people I know don't wash after visiting the restroom.  Just because I
know or work with them doesn't mean I'd ever shake their hand.

--
ME2



On Tue, Apr 28, 2009 at 11:39 AM, Jeremy Anderson <[email protected]>
wrote:


The security guy is insisting that we set the Min Password Age to 1 day.  I
agree in theory that this is a swell idea, but in practice, I think it will
be a disaster.

 

We have users that forget their passwords every other day (Don't ask) and
company politics that are going to let this bad habit continue.  Admins
reset the password, and set the flag that says "Must change password on next
logon"

 

I say, that the user will never get prompted to reset the next time they
login, or that changing it will fail, because the password is now less than
one day old.

 

Security guy says "Not having that set is a bad idea, other companies do it,
make it happen"

 

How do you guys deal with this?

 

Thanks

Jeremy

 



 




 


 


  _____  

If this email is spam, report it here:
http://www.OnlyMyEmail.com/ReportSpam
<http://www.onlymyemail.com/view/?action=reportSpam&Id=ODEzNjQ6ODg2NTI5MjI1O
nBqcEBwc25ldC5jb20%3D>  


THIS ELECTRONIC MESSAGE AND ANY ATTACHMENTS ARE CONFIDENTIAL
AND PROPRIETARY PROPERTY OF THE SENDER. THE INFORMATION IS 
INTENDED FOR USE BY THE ADDRESSEE ONLY. ANY OTHER INTERCEPTION,
COPYING, ACCESSING, OR DISCLOSURE OF THIS MESSAGE IS PROHIBITED.
IF YOU HAVE RECEIVED THIS MESSAGE IN ERROR, PLEASE IMMEDIATELY
NOTIFY THE SENDER AND DELETE THIS MAIL AND ALL ATTACHMENTS. DO NOT
FORWARD THIS MESSAGE WITHOUT PERMISSION OF THE SENDER. 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Reply via email to