On Thu, Aug 29, 2002 at 12:35:32AM -0500, Florin Iucha wrote: >On Wed, Aug 28, 2002 at 07:22:31PM -0500, Bob Tanner wrote: >> Quoting Ben Bargabus (ben_b at ppdonline.com): >> > none of these people will dump their Windows environments because it's >> > "unsafe", they'll expect you to make it safe. these are financial >> > people and are generally uncomfortable with change.). >> >> I'll speak up here. > >Me too. > >> Simple example. Mandatory password aging. Every 30 days you expire all passwords >> and force the user to choose a new, non-dictionary, not-used-before password. >> Gonna have a change, every 30 days. > >Do you know what will this guarantee? That in less than 30 seconds by >looking under the monitor, under the desk and the top drawer you will find >the post-it with the last 5 passwords. > >Bob, when was the last time you changed you house keys? Your office >keys? Your office alarm code? heh you have a point there. to what level are you secure? what is important? what are people willing to pay for? all part of your total security package. > >Give me a break. > >florin > >-- > >"If it's not broken, let's fix it till it is." > >41A9 2BDE 8E11 F1C5 87A6 03EE 34B3 E075 3B90 DFE4 -- --*--SpencerUnderground--*-- http://autonomous.tv/ spencer at autonomous.tv Key fingerprint = 173B 8760 E59F DBF8 6FD2 68F8 ABA2 AB08 49C7 4754 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020829/830cf632/attachment.pgp