[29086] in Kerberos
Re: Password History Policy Question
daemon@ATHENA.MIT.EDU (Roberto =?iso-8859-1?Q?C=2E_S=E1nc)
Thu Jan 17 17:19:49 2008
Date: Thu, 17 Jan 2008 17:18:50 -0500
From: Roberto =?iso-8859-1?Q?C=2E_S=E1nchez?= <roberto@connexer.com>
To: kerberos@mit.edu
Message-ID: <20080117221850.GA27418@connexer.com>
Mail-Followup-To: kerberos@mit.edu
MIME-Version: 1.0
In-Reply-To: <28540.1200603287@malison.ait.iastate.edu>
Content-Type: multipart/mixed; boundary="===============0831035537=="
Errors-To: kerberos-bounces@mit.edu
--===============0831035537==
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="qDbXVdCdHGoSgWSk"
Content-Disposition: inline
--qDbXVdCdHGoSgWSk
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Thu, Jan 17, 2008 at 02:54:47PM -0600, John Hascall wrote:
>=20
> <soapbox>
> I realize that these sorts of password rules are often externally dictate=
d,
> but it's not clear to me (or many others) that they actually have a posit=
ive
> effect on security).
> </soapbox>
>=20
They don't. In fact, it has been demonstrated time and again that these
sorts of draconian policies have a negative effect on security.
--=20
Roberto C. S=E1nchez
http://people.connexer.com/~roberto
http://www.connexer.com
--qDbXVdCdHGoSgWSk
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHj9RK5SXWIKfIlGQRAoAbAJ9CKfwY5HiPkES4ufShn6nUdJTFWwCeOl/b
vvBbFOatEUZFp/+D8LMBPFE=
=InAX
-----END PGP SIGNATURE-----
--qDbXVdCdHGoSgWSk--
--===============0831035537==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
--===============0831035537==--
