(Soap box deployed) You can make such policies, but folks will find ways to cope. We point a fire hose of passwords to manage at the poor user.
I argue it is best to attack a root problem rather than try to pile on fix after fix. In response to Walt's wise words: yes the *individual* password may be technically stronger, but we have to consider the larger picture. It is one thing if that were the *only* password the user had to manage, but quite another if the user has to fumble with many. Same goes for those tokens. Those are wonderful gadgets and offer a strong solution. But just how many do we expect the average user to carry? Two? Ten? The solution does not look to scale well. (Soap box secured) -----Original Message----- From: IBM Mainframe Discussion List [mailto:[EMAIL PROTECTED] On Behalf Of McKown, John Sent: Wednesday, February 14, 2007 8:31 AM To: IBM-MAIN@BAMA.UA.EDU Subject: Re: Mixed Case Password on z/OS 1.7 and ACF 2 Version 8 > I think he is - but it might be more secure than in shops that require > passwords that are so strong that people don't remember them, but > write them down on yellow post notes. This is easy to stop. Restrict distribution and use of yellow post-it(tm) note paper. "Use of post-it note paper will be considered a security violation and subject to disciplinary action up to and including immediate termination." -- John McKown Senior Systems Programmer HealthMarkets Keeping the Promise of Affordable Coverage Administrative Services Group Information Technology NOTICE: This electronic mail message and any files transmitted with it are intended exclusively for the individual or entity to which it is addressed. The message, together with any attachment, may contain confidential and/or privileged information. Any unauthorized review, use, printing, saving, copying, disclosure or distribution is strictly prohibited. If you have received this message in error, please immediately advise the sender by reply email and delete all copies. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html