[organization] will be enforcing strong passwords to ensure that [network] logon passwords are compliant with current password policy. [network] password policy is based on recommended settings provided by the National Security Administration’s NT Security Technical Implementation Guide.
IMPACT TO CUSTOMERS: Each new password will be evaluated according to current [network] standards for robust passwords as itemized below. A new password that does not conform to these standards will be rejected and followed by a dialog box to explain why the password does not comply.
PASSWORD CRITERIA:
Passwords MUST:
1. Equal exactly 7 characters (no more, no less)
etc.
So, um, a password of a fixed length (rather than the much more common “at least 8 characters”) is strong security? Yeah, ok. Thank you for making it easier for crackers to break in. No reason to check for random length passwords, because they know they’ll all be the same length.
From an email received yesterday:
Hello Andy,
…yada yada yada…At 04:25 PM 12/10/2001 -0500, you wrote:
Below is your form’s result. It was submitted by
Gary Bunker andy@andysocial.com on Mon Dec 10 16:25:23 2001.
Um, is my name not obviously Gary Bunker, based on the form results block? Why would I give my name as Gary and wish to be addressed as Andy? Morons.
Categories
Tag Cloud
Blog RSS
Comments RSS
Last 50 Posts
Back
Void 
Life 
Earth 
Wind 
Water 
Fire