this post was submitted on 20 Aug 2024
6 points (100.0% liked)

Cybersecurity - Memes

1964 readers
1 users here now

Only the hottest memes in Cybersecurity

founded 1 year ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
6
Your password has expired (feddit.org)
submitted 2 months ago* (last edited 2 months ago) by [email protected] to c/[email protected]
76 comments fedilink hide all child comments
 

This practice is not recommended anymore, yet still found in many enterprises.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 0 points 2 months ago (1 children)

Only on accounts that have MFA is password rotation no longer recommended.

If the account is non MFA protected password changes are still recommend.

[–] [email protected] 0 points 2 months ago (2 children)

really? what's the standard for that? like how often should you be rotating your password?

I assumed many people forget their new passwords (because I often do) than are protected by continually rotating passwords.

[–] [email protected] 0 points 2 months ago

It's one of the updated NIST recommendations, I don't recall which one but it specifically calls out no password cycling for MFA protected accounts.

[–] [email protected] 0 points 2 months ago

I have over 500 passwords in my password manager. I don’t know what I’d do without it.