Microsoft says mandatory password changing is “ancient and obsolete”:
And annoying too. And does very little to improve security.
We just need to get PCI to stop forcing that and everyone will be more better off.
I have never understood the PCI-DSS requirements to force users to change the password often.
Users just ended up with simplep@assword123
and the next password:
and so on lol
Open Source Social Network. Focused on technology, networking, linux, privacy and security, but open to anyone. Civil discourse, polite and open. Managed by the noc.org team.