Archive for April 27th, 2019
Microsoft 365 – simplify your compliance journey
Samstag, April 27th, 2019Los Angeles – wegen einer möglichen Ansteckung mit Masern stehen Hunderte Studenten und Mitarbeiter an zwei US-Universitäten unter Quarantäne
Samstag, April 27th, 2019
Kliniken Kreis Mühldorf a. Inn – eine Ausbildung ist abwechslungsreich und vielseitig
Samstag, April 27th, 2019New York Lower Manhattan – online webcam
Samstag, April 27th, 2019Universitätsklinikum Heidelberg – neuer Bluttest (k)ein Meilenstein in der Brustkrebsdiagnostik
Samstag, April 27th, 2019
Bundesarbeitsminister Hubertus Heil (SPD) – will gegen die Ausbeutung von Paketzustellern vorgehen
Samstag, April 27th, 2019
Microsoft Windows 10 Version 1903 & Windows Server Version 1903 Security baseline (DRAFT) – dropping the password expiration policies
Samstag, April 27th, 2019 There’s no question that the state of password security is problematic and has been for a long time – when humans pick their own passwords, too often they are easy to guess or predict. When humans are assigned or forced to create passwords that are hard to remember, too often they’ll write them down where others can see them. When humans are forced to change their passwords, too often they’ll make a small and predictable alteration to their existing passwords, and/or forget their new passwords. When passwords or their corresponding hashes are stolen, it can be difficult at best to detect or restrict their unauthorized use
There’s no question that the state of password security is problematic and has been for a long time – when humans pick their own passwords, too often they are easy to guess or predict. When humans are assigned or forced to create passwords that are hard to remember, too often they’ll write them down where others can see them. When humans are forced to change their passwords, too often they’ll make a small and predictable alteration to their existing passwords, and/or forget their new passwords. When passwords or their corresponding hashes are stolen, it can be difficult at best to detect or restrict their unauthorized use
Why are we removing Password expiration policies?
First, to try to avoid inevitable misunderstandings, we are talking here only about removing password-expiration policies – we are not proposing changing requirements for minimum password length, history, or complexity