600
Your password has expired (feddit.org)
submitted 4 weeks ago* (last edited 4 weeks ago) by cron@feddit.org to c/cybersecuritymemes@lemmy.world
86 comments fedilink hide all child comments

This practice is not recommended anymore, yet still found in many enterprises.

you are viewing a single comment's thread
view the rest of the comments
[-] Varyk@sh.itjust.works 23 points 4 weeks ago* (last edited 4 weeks ago)

oh i didn't know that, are companies finally realizing that creating and trying to remember new passwords causes more trouble then keeping one really good password?

[-] slazer2au@lemmy.world 6 points 4 weeks ago

Only on accounts that have MFA is password rotation no longer recommended.

If the account is non MFA protected password changes are still recommend.

[-] Varyk@sh.itjust.works 5 points 4 weeks ago* (last edited 4 weeks ago)

really? what's the standard for that? like how often should you be rotating your password?

I assumed many people forget their new passwords (because I often do) and become compromised than are protected by continually rotating passwords.

[-] skittlebrau@lemmy.world 6 points 4 weeks ago

I have over 500 passwords in my password manager. I don’t know what I’d do without it.

[-] slazer2au@lemmy.world 2 points 4 weeks ago

It's one of the updated NIST recommendations, I don't recall which one but it specifically calls out no password cycling for MFA protected accounts.

this post was submitted on 20 Aug 2024
600 points (98.9% liked)

Cybersecurity - Memes

1893 readers
13 users here now

Only the hottest memes in Cybersecurity

founded 1 year ago
MODERATORS
Sam1232188@lemmy.world
neurohost@lemmy.world
Sam1232188@lemmy.fmhy.ml
Alphadef@programming.dev
CannaVet@lemmy.world