This column would not be complete without mentioning the password policy I strongly recommend. Regular user passwords should be a minimum of 10 to 12 characters long (preferably 12 or more); privileged accounts should have passwords of at least 15 characters, and they should"
20090527
Test the strength of your password policy | Security Central - InfoWorld
Test the strength of your password policy | Security Central - InfoWorld: "You can use the password guessing spreadsheet to simulate all sorts of attack scenarios, but the one I often demonstrate assumes the following inputs: eight-character password, complexity enabled, 94-symbol character set, with 90 days between password changes. On average, the attacker could break passwords under that policy with only 65 guesses per minute -- not at all hard to accomplish.
This column would not be complete without mentioning the password policy I strongly recommend. Regular user passwords should be a minimum of 10 to 12 characters long (preferably 12 or more); privileged accounts should have passwords of at least 15 characters, and they should"
This column would not be complete without mentioning the password policy I strongly recommend. Regular user passwords should be a minimum of 10 to 12 characters long (preferably 12 or more); privileged accounts should have passwords of at least 15 characters, and they should"
