Re: User ID policies
From: phn@icke-reklam.ipsec.nu
Date: 07/15/02
- Next message: MSS: "W2K domain / XP client / Password expiration warning"
- Previous message: MSS: "User ID policies"
- In reply to: Mark Landin: "User ID policies"
- Next in thread: HC: "Re: User ID policies"
- Reply: HC: "Re: User ID policies"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: phn@icke-reklam.ipsec.nu Date: 15 Jul 2002 16:28:04 GMT
Mark Landin <mark.landin@tdwilliamson.com> wrote:
> There are couple of different schemes a company can use to create user
> ids for use in a network. Are there some generally accepted "best
> practices" when it comes to defining a user id scheme as it relates to
> security? (For instance, I suppose a totally randomized userid would
> be most secure because it would remove the hacker's ability to
> determine any kind of userid patten and thus make cracking attempts
> more difficult ... but from the user and admin perspective it's not
> very palatable...)
The correlation between userid and security seems close to zero. Don't
your organization has better security-related issues to deal with ?
--
Peter Håkanson
IPSec Sverige ( At Gothenburg Riverside )
Sorry about my e-mail address, but i'm trying to keep spam out,
remove "icke-reklam" if you feel for mailing me. Thanx.
- Next message: MSS: "W2K domain / XP client / Password expiration warning"
- Previous message: MSS: "User ID policies"
- In reply to: Mark Landin: "User ID policies"
- Next in thread: HC: "Re: User ID policies"
- Reply: HC: "Re: User ID policies"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
