20 Oct
2008
20 Oct
'08
6:25 p.m.
On Mon, Oct 20, 2008 at 4:12 PM, Nifty Fedora Mitch niftyfedora@niftyegg.com wrote:
Implied in all of this is a lesson to us in large and small companies that access and pass words and keys need to be well managed. If you have not placed a sealed envelope with pass words and keys in your managers locked resource perhaps you should.
Such things need to be covered by policy and process.
Some companies shoot themselves on the foot when they require that user password be changed very frequently; every 60 or 90 days.
~af