On Thu, November 29, 2007 10:57 am, Michael O'Keefe wrote: >>>>> The minimum age combined with the length of the password history make >>>>> it >>>> so a password cannot be reused within a given period of time. Say you >>>> keep >>>> 26 passwords in the history, and have a minumum age of 2 weeks, this >>>> will >>>> not let you use the same password for a minimum of a year. >>> I haven't done much looking about, but is there support for password >>> history in Linux? > > I've never understood password aging. > If your system is so fragile that it cannot withstand users keeping > their passwords indefinitely, I'd be looking at the systems fragility, > not password rotation. > >
I'm sitting here biting my tongue ... but I would argue that password aging, and also multiple logon/passwords, undercut security by forcing people to record them. One good password that you don't share and can remember is better. -- Lan Barnes SCM Analyst Linux Guy Tcl/Tk Enthusiast Biodiesel Brewer -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
