Slashdot Mirror


Password Complexity in the Enterprise?

andrewa asks: "What's the deal with passwords in a corporate environment these days? The company I work for has introduced layer upon layer of complexity on passwords over the years, and now it is simply ridiculous. We have to enter a 16 character password each month that cannot compare in any digits to the previous twelve passwords, nor can it be a simple string -- it has to be a mixture of upper- and lower-case characters including numerals and non-alphanumerical characters. What's next? A mixture of non-keyboard accessible characters and several varieties of DNA? It's not like we are even a government institute -- we are a software company that does telecom stuff, for goodness sake. Anyway ... you know what this makes me do? Write it down somewhere. How secure is that? The question is, I think my company is completely anal with the password requirements, what other security policies are in place in other companies that either completely exceed the banality of my company, or -- God forbid -- have a security system that makes sense?"

3 of 216 comments (clear)

  1. On the Enterprise? by mph · · Score: 4, Funny

    I know a few...

    "Theta alpha two seven three seven blue"

    "One one A"
    "One one A two B"
    "One B two B 3"
    "Zero zero zero destruct zero"

    But usually, voice identification is enough.

    1. Re:On the Enterprise? by poena.dare · · Score: 4, Funny

      Yeah, I used to go for super duper password complexity on the Enterprise, but Data kept mimicking my voice, so what's the point? You can't win.

  2. Re:Skroob. by Captain+Splendid · · Score: 4, Funny
    --
    Linux, you magnificent bastard, I read the fucking manual!