Re: remote desktop issues
- From: DevilsPGD <spam_narf_spam@xxxxxxxxxxxx>
- Date: Wed, 26 Sep 2007 16:25:45 -0600
In message <OK5dAVCAIHA.5328@xxxxxxxxxxxxxxxxxxxx> "S. Pidgorny <MVP>"
<slavickp@xxxxxxxxx> wrote:
G'day:
"DevilsPGD" <spam_narf_spam@xxxxxxxxxxxx> wrote in message
How unfortunate. Firewalls are certainly mandatory, but I am a firm
believer that password complexity and lockout rules cause far more harm
then good.
Unfortunately, arguing with folks who are true believers is usually
pointless as they are unwilling to consider alternate possibilities.
You happen to be even more radical in your views than I am.... What's wrong
with the password complexity rules?
In general, people create stupid passwords. Complexity rules make this
worse, not better.
Turn on a requirement to have a number, they add a number to the end,
usually a zero or a one.
Turn on a requirement to add a punctuation, 99% of users add a "!" to
the end.
A capital letter? That's usually the first letter.
So here's the thing, what's more secure, eight letters in a row, or six
letters, a single digit and single punctuation mark?
Is a password with an incrementing digit on the end any more secure then
a password without an incrementing digit?
I'd take a sufficient passphrase over complexity rules.
--
You can get more with a kind word and a 2x4 than just a kind word.
.
- Follow-Ups:
- Re: remote desktop issues
- From: Al Dunbar
- Re: remote desktop issues
- References:
- RDP: remote desktop issues
- From: Al Dunbar
- Re: remote desktop issues
- From: Al Dunbar
- Re: remote desktop issues
- From: DevilsPGD
- RDP: remote desktop issues
- Prev by Date: NTBU error
- Next by Date: Fine-grained Entitlement Management in SOA Microsoft Environment
- Previous by thread: Re: remote desktop issues
- Next by thread: Re: remote desktop issues
- Index(es):
Relevant Pages
|
