[Lynn R Grant: Password Aging]

Barry Shein bzs at Encore.COM
Thu Dec 29 02:40:00 AEST 1988


Of course the obvious question is does anyone have any good cases of
systems broken into where, if password aging had been in effect, the
break-in would have been prevented? Reasoning appreciated.

Other than cases like knowing full well a disgruntled employee has
left (password aging assumes you don't know that something is under
attack or has been compromised, I'm talking about automatic update,
not any situation where if you had used your common sense and changed
a password you would have avoided a problem because the password ager
might not have kicked in yet in those cases either.)

	-Barry Shein, ||Encore||



More information about the Comp.unix.wizards mailing list