[geeks] Mandatory password changes

Joshua Boyd jdboyd at jdboyd.net
Mon Dec 11 10:08:11 CST 2006


On Sun, Dec 10, 2006 at 01:29:09PM -0600, Bill Bradford wrote:

> > 3.  90% of your employees will have their current password written on a
> > Post-It note on their monitor or, at best, in their desk drawer.
> 
> Current policy is password changes every 90 days, and you can't use a
> password that has the same characters in the same positions as your old
> password, nor can you re-use any of the last six passwords you've had.
> 
> This of course doesn't stop the post-it-note problem...

One former employer would stroll around looking for postits on
monitors.  He would even flip mouse pads and keyboards to look for
postits there.  

That still doesn't help with the postit in the wallet or PDA problem.

-- 
Joshua D. Boyd
jdboyd at jdboyd.net
http://www.jdboyd.net/
http://www.joshuaboyd.org/



More information about the geeks mailing list