I have a long running disagreement with the outside network administrator at
one of my client sites. This inexperienced young man insists on using a
long complex password for the administrator like fjfj73273kksks92LMN
928BTD4. I told him there was no need for such a complex password and the
nature of the information he thinks he is securing does not warrant it.
I had to go onsite today and discovered that my network friend carried over
this policy to each user's login. Now instead of passwords like fluffy and
bananas each user has a complex password like the one above.
Guess what half the users have written on a posit dangling from their
monitors.
I have a long running disagreement with the outside network administrator at one of my client sites. This inexperienced young man insists on using a long complex password for the administrator like fjfj73273kksks92LMN 928BTD4. I told him there was no need for such a complex password and the nature of the information he thinks he is securing does not warrant it. I had to go onsite today and discovered that my network friend carried over this policy to each user's login. Now instead of passwords like fluffy and bananas each user has a complex password like the one above. Guess what half the users have written on a posit dangling from their monitors. Explain this to me, please.
Our outside network consultant, who is very good, said that the minimum
length for an administrator password should be at least 17 characters.
This password should include both upper and lower case letters as well
as numbers and symbols. This would require a password hacker program to
work for several weeks to crack the password. Most hackers would give up
in a few days.
Our administrator password is 19 characters.
As to why we do this, I believe it limits our liability. If someone
hacked into our network and stole information for identity theft
purposes, I would want to be able to say that my network was secured to
current standards.
I understand that Microsoft recommends at least 7 character passwords
containing both upper and lower case letters as well as numbers and
symbols for workstation passwords; so, this is our policy for the
workstations.
I know you want to know how can I possibly remember the administrator
password. Well, this is not mine; but, here is one way to remember a 20
character password. I would just have to remember the words to Amazing
Grace.
AghstsTs@wlm10wlbn@f
"Brian" <user@sbcglobal.net> wrote in message
news:MdCSg.17686$Ij.11667@newssvr14.news.prodigy.c om...
Quote:
Allan Martin wrote:
Quote:
I have a long running disagreement with the outside network administrator at one of my client sites. This inexperienced young man insists on using a long complex password for the administrator like fjfj73273kksks92LMN 928BTD4. I told him there was no need for such a complex password and the nature of the information he thinks he is securing does not warrant it. I had to go onsite today and discovered that my network friend carried over this policy to each user's login. Now instead of passwords like fluffy and bananas each user has a complex password like the one above. Guess what half the users have written on a posit dangling from their monitors. Explain this to me, please.
Our outside network consultant, who is very good, said that the minimum length for an administrator password should be at least 17 characters. This password should include both upper and lower case letters as well as numbers and symbols. This would require a password hacker program to work for several weeks to crack the password. Most hackers would give up in a few days. Our administrator password is 19 characters. As to why we do this, I believe it limits our liability. If someone hacked into our network and stole information for identity theft purposes, I would want to be able to say that my network was secured to current standards. I understand that Microsoft recommends at least 7 character passwords containing both upper and lower case letters as well as numbers and symbols for workstation passwords; so, this is our policy for the workstations. I know you want to know how can I possibly remember the administrator password. Well, this is not mine; but, here is one way to remember a 20 character password. I would just have to remember the words to Amazing
The end users now have huge mumbo jumbo passwords. They can't remember them
so they wrote them out on posits and have they pasted on their monitors.
Security is non-existent.
I have a long running disagreement with the outside network administrator atone of my client sites. This inexperienced young man insists on using along complex password for the administrator like fjfj73273kksks92LMN928BTD4. I told him there was no need for such a complex password and thenature of the information he thinks he is securing does not warrant it.I had to go onsite today and discovered that my network friend carried overthis policy to each user's login. Now instead of passwords like fluffy andbananas each user has a complex password like the one above.Guess what half the users have written on a posit dangling from theirmonitors.Explain this to me, please.
Have you mentioned that you live in the real world at all..
I have a long running disagreement with the outside network administratoratone of my client sites. This inexperienced young man insists on using along complex password for the administrator like fjfj73273kksks92LMN928BTD4. I told him there was no need for such a complex password and thenature of the information he thinks he is securing does not warrant it.I had to go onsite today and discovered that my network friend carriedoverthis policy to each user's login. Now instead of passwords like fluffy andbananas each user has a complex password like the one above.Guess what half the users have written on a posit dangling from theirmonitors.Explain this to me, please.
Have you mentioned that you live in the real world at all..
The real world is like Cheers, everyone knows your password.
The real world is like Cheers, everyone knows your password.
Not in our office. Even the administrator does not know any user
passwords. This is another security feature that is designed to know who
does what on the workstation. The administrator used to know all the
passwords; but, our outside consultant recommended that only the user
know their password. Apparently, this was based on several court cases
where the employer was unable to prove wrongdoing by a user because the
administrator also knew their password.
It is unfortunate that it has come to this. Nothing like the old days
when we did not ever have to lock our doors.
"Brian" <user@sbcglobal.net> wrote in message
news:vAQSg.9450$6S3.3041@newssvr25.news.prodigy.ne t...
Quote:
Allan Martin wrote:
Quote:
The real world is like Cheers, everyone knows your password.
Not in our office. Even the administrator does not know any user passwords. This is another security feature that is designed to know who does what on the workstation. The administrator used to know all the passwords; but, our outside consultant recommended that only the user know their password. Apparently, this was based on several court cases where the employer was unable to prove wrongdoing by a user because the administrator also knew their password. It is unfortunate that it has come to this. Nothing like the old days when we did not ever have to lock our doors.
I'm not old enough to remember those good old days. My original post implied
that very long and complex user passwords have a habit of getting written
down on slips of paper where all can view.
"Brian" <user@sbcglobal.net> wrote in message news:vAQSg.9450$6S3.3041@newssvr25.news.prodigy.ne t...
Quote:
Allan Martin wrote:
Quote:
The real world is like Cheers, everyone knows your password.
Not in our office. Even the administrator does not know any user passwords. This is another security feature that is designed to know who does what on the workstation. The administrator used to know all the passwords; but, our outside consultant recommended that only the user know their password. Apparently, this was based on several court cases where the employer was unable to prove wrongdoing by a user because the administrator also knew their password. It is unfortunate that it has come to this. Nothing like the old days when we did not ever have to lock our doors.
I'm not old enough to remember those good old days. My original post implied that very long and complex user passwords have a habit of getting written down on slips of paper where all can view.
"Brian" <user@sbcglobal.net> wrote in message
news:vAQSg.9450$6S3.3041@newssvr25.news.prodigy.ne t...
Quote:
Not in our office. Even the administrator does not know any user passwords. This is another security feature that is designed to know who does what on the workstation. The administrator used to know all the passwords; but, our outside consultant recommended that only the user know their password. Apparently, this was based on several court cases where the employer was unable to prove wrongdoing by a user because the administrator also knew their password. It is unfortunate that it has come to this. Nothing like the old days when we did not ever have to lock our doors.
Someone else besides the user had better be able to gain access to a user's
account should that user quit. The chances of having an employee quit and
leave alot of critical information inaccessible is much higher than needing
to bring legal action against an employee for something they did on their
user account, at least IMO.
"HeyBub" <heybubNOSPAM@gmail.com> wrote in message
news:12hnp20436ljt96@news.supernews.com...
Quote:
Allan Martin wrote:
Quote:
"Brian" <user@sbcglobal.net> wrote in message news:vAQSg.9450$6S3.3041@newssvr25.news.prodigy.ne t...
Quote:
Allan Martin wrote:> The real world is like Cheers, everyone knows your password. Not in our office. Even the administrator does not know any user passwords. This is another security feature that is designed to know who does what on the workstation. The administrator used to know all the passwords; but, our outside consultant recommended that only the user know their password. Apparently, this was based on several court cases where the employer was unable to prove wrongdoing by a user because the administrator also knew their password. It is unfortunate that it has come to this. Nothing like the old days when we did not ever have to lock our doors.
I'm not old enough to remember those good old days. My original post implied that very long and complex user passwords have a habit of getting written down on slips of paper where all can view.
But someone OUTSIDE the office can't view them.
The bad guys get jobs with a janitorial service and jot down the passwords
pasted to the monitors during the night.
My point is there are many instances where a password such as OUTSIDE123 is
better than YTfr65479HYiure45325JK788665HYTRFEDD321
The MyLounge.com forum is intended for informational use only and should not
be relied upon and is not a substitute for any advice. The information contained
on MyLounge.com are opinions and suggestions of members and is not a representation
of the opinions of MyLounge.com. MyLounge.com does not warrant or vouch for
the accuracy, completeness or usefulness of any postings or the qualifications
of any person responding. Please consult a expert or seek the services of an
attorney in your area for more accuracy on your specific situation. Please note
that our forums also serve as mirrors to Usenet newsgroups. Many posts you see
on our forums are made by newsgroup users who may not be members of MyLounge.com
Term of Service
Explain this to me, PLease
Linear Mode
