[j-nsp] Forced password resets?
Dovid Bender
dovid at telecurve.com
Thu Apr 19 04:55:08 EDT 2018
I was thinking the exact same thing since they never sent this before.....
On Thu, Apr 19, 2018 at 3:54 AM, Julien Goodwin <jgoodwin at studio442.com.au>
wrote:
> "To help ensure your trust and security on www.juniper.net, we are
> asking all our users to change their passwords every 180 days"
>
> This is considered to not be good practice[1], and as this is new, makes
> me wonder whether something has happened that Juniper don't want to
> admit to yet.
>
> A general requirement that accounts will be deactivated if they aren't
> used at least every six months is fairly understandable, but forcing a
> password change with it isn't.
>
> 1: Random point:
> https://www.ncsc.gov.uk/articles/problems-forcing-regular-password-expiry
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
>
More information about the juniper-nsp
mailing list