this post was submitted on 22 Jan 2024
3 points (71.4% liked)

Firefox

17865 readers
14 users here now

A place to discuss the news and latest developments on the open-source browser Firefox

founded 4 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 0 points 9 months ago (1 children)

NIST does not recommend changing passwords. Its usually a bad practice

[–] [email protected] 0 points 9 months ago (1 children)

Why is changing passwords bad practice? What is the reasoning behind this? Changing passwords is highly recommended. There are many reasons why one should do this. Found this article: https://www.linkedin.com/pulse/why-passwords-must-periodically-changed-roger-grimes and don't agree. The argumentation seems like if you have to remember all passwords, but totally ignores password managers.

[–] [email protected] 0 points 9 months ago

NIST used to tell orgs to require password rotation. Some years ago they changed their recommendation with an explanation that it adds not security benefits while it encourages users to write down or use shittier passwords.