Today at 10:53am, Jim Lawson wrote:
> Maybe it's time to reopen the discussion on password aging and password
> strength. netID for everything opens the issues that Stef is talking about.
> In my opinion:
> - netID passwords should expire annually
> - netID passwords should be subjected to some type of strength analysis
> (e.g. libcrack)
I agree, I also think we should increase the minimum password length
from 6 to 8 characters.
Computers are fast enough these days that six characters is just not
enough to prevent cracking anymore.
Frank Swasey | http://www.uvm.edu/~fcs
Informtn Tech Profssnl Sr | Always remember: You are UNIQUE,
University of Vermont | just like everyone else.
"I am not young enough to know everything. " - Oscar Wilde (1854-1900)