Re: password complexity -- implementing security changes
- From: "Ethan Post" <post.ethan@xxxxxxxxx>
- To: "Coleman, Kelley (HAC)" <Kelley.Coleman@xxxxxx>
- Date: Thu, 2 Mar 2006 17:13:58 -0600
Perhaps we should look at this like logical IO's. Password resets seem
like a minor thing, but consider all the 10's of thousands of
helpdesks all resetting 10's of thousands of passwords, all that adds
up to a big loss of productivity. Perhaps we don't need the GDP to
grow, we just need to ensure password attempts is at least 50 (sorry
for my US analogical *warning possible made up word* bias).
We Oracle DBA's make up something like 40% of the market, just think
about it, Oracle-L could change the entire world economy overnight..or
not.
On 3/2/06, Coleman, Kelley (HAC) <Kelley.Coleman@xxxxxx> wrote:
> I'm with you, Ethan. Unfortunately, TPTB have mandated we go to 3
> attempts. The number password reset calls I take has gone up
> exponentially. And I'm really not being dramatic. I've gone from 3-5
> per week to 7-8 per day. It's very frustrating. Most of my users are
> not super users. They have password requirements that are very complex.
> And like you, they have 10 different ones to remember and each system's
> requirements are slightly different so it's rare that they can use the
> same password on several systems.
--
//www.freelists.org/webpage/oracle-l
Other related posts:
