How do you manage multiple /etc/passwd files?
naftoli at aecom.UUCP
naftoli at aecom.UUCP
Tue Feb 17 06:41:28 AEST 1987
In article <286 at desoto.UUCP>, shz at desoto.UUCP (S. Zirin) writes:
> In addition, you should probably use password aging to
> require your users to change their passwords periodically.
It has been debated whether password aging is a useful security
measure. Some cons:
1. People who are forced to change their passwords in order to
log on tend to think of some quick and dirty password which
will be easy to remember. It has been shown that systems that
have password aging had the simplest passwords of all.
2. It confuses novice users to be thrown into the passwd(1)
command upon login.
3. Users often forget their new password increasing the administrative
hassle.
I believe this was discussed in a paper distributed with some UNIX
releases entitled "On the Security of UNIX."
--
Robert N. Berlinger
Systems Analyst, Scientific Computing Center Compuserve: 73047,741
Albert Einstein College of Medicine Easylink: 62956067
UUCP: ...{philabs,cucard,pegasus,rocky2}!aecom!naftoli GEnie: R.Berlinger
More information about the Comp.unix.wizards
mailing list