Does anyone know a good reference for listing password cracking times? I'm trying to find some stats to determine if we should pick a 20+ character password for service accounts and only change every 6 or 12 months or pick a shorter password length (10-12 characters) and change every 90 days or so. All passwords would be using all four character sets (Aa1!).
Thanks. Craig L. Bowser CISSP SANS GSEC (Gold) ------------------------------- Nothing makes a person more productive than the last minute. - Contributed by Jeff Pappas
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
