Re: password expiration policy for admin and system accounts ?

From: JJ (johnny_at_tamtam.com)
Date: 10/20/05 

Date: Thu, 20 Oct 2005 16:35:04 GMT

No argument here about password complexity.

The question is merely about forcing password expiration.

Thanks for your input. We're taking all these suggestions seriously.

"Wolf Kirchmeir" <wolfekir@sympatico.ca> wrote in message
news:y0P5f.11677$ns3.984908@news20.bellglobal.com...
> JJ wrote:
> > Thank you for your reply.
> >
> > I would agree about the admin account, but what about system/service
> > accounts used by different systems ?
> [...]
>
> Aren't these actually just another variety of administrative accounts?
> IMO, you should consdier the advice given to you carefully, especially
> the rule that more power an account has, the more it should be secured,
> which of course implies both complex/long passowrds, and more frequent
> changing thereof.
>
> One of the things I find it difficult to get across to people is that
> even their single home computers need constant vigilance -- until
> something goes thoroughly wrong because of malware, after which some
> people develop severe paranoia.
>
> There is no simple easy solution to the problems of security, and
> certainly no cheap one.
>
> And that's my perspective from the p.o.v of a home user with three
> machines that aren't even networked (although I plan to do it Real Soon
> Now. :-))