🔑 Strong password policies are your first line of defense.
⚙️ Require minimum length and complexity to block easy attacks.
👉 https://zurl.co/jz3uU

#CyberSecurity #PasswordPolicy #DataProtection #Zevonix

The following rules apply for user passwords:

* Passwords must be changed every year
* Passwords are checked against a list of known weak passwords
* Previously used passwords must not be reused
* Passwords must be at least 16 characters long
* Passwords must consist of at least three of the following groups
* lower case letters
* upper case letters
* digits
* emojis coding for emotion
* mostly red emojis
* one half of the simplified Japanese alphabet
* symbols that conjure Lucifer
* Passwords must neither begin or end with a number (because, why not?)
* Passwords must not contain the name of your mom
* Passwords must not contain any words of our secret "dictionary" (like the name of the company but also Football Clubs' deputy managers' wife's/husband's nicknames)
* Passwords sum of the characters' UTF codes must be divisible by seven, 11 or any prime number larger than 1000.

On the bright side: Typing your password *is* still working time, so you get paid. You can also now clame a law degree on your CV.

#ActiveDirectory #SecurityThroughObscurity #Passwords #PasswordPolicy

Sigh, spot the mistakes...

I hope the reason for the password length restriction is not a data field in the backend

#password #passwordpolicy

🔐 Password Hygiene: Rotating the Wardrobe of Digital Defense

Passwords are like clothes—they need to be rotated and “washed” regularly. Small businesses forget about it, but the Daemon waits for those who neglect the basics. Small businesses often believe th…

Tom's IT Cafe

✨ LTB Service Desk 0.6.1 released!

📰 Some fixes needed after 0.6 release, mostly for AD compatibility and Docker images

🔗 https://projects.ow2.org/view/ldaptoolbox/ltb-service-desk-0-6-1-released/

#LDAP #OpenLDAP #ActiveDirectory #Password #Security #PasswordPolicy

OW2 Projects - LTB Service Desk 0.6.1 released! (ldaptoolbox.ltb-service-desk-0-6-1-released.WebHome)

LTB Service Desk 0.6.1 released!

How to Plan a New (and Improved!) Password Policy for Real-World Security Challenges

Learn 5 proven strategies to create effective, enforceable password policies that strengthen real-world security.

The Hacker News

Must not contain the characters <, > or spaces.
account.docusign.com

Do I get it correctly, that you disallow < and > symbols because you display plaintext passwords on HTML pages/other XML documents without proper encoding?

Do you use plaintext passwords for filenames (surely <, > and spaces are bad options for filenames)?

What could be the reasons to prohibit these symbols?

@docusign
@dumbpasswordrules
@duffn
#passwordpolicy

Ok found a blog post explaining it, from my reading it's equally good (or bad) as the Apple one.

So I'm going to put in the #passwordpolicy that synced passkeys are OK.

But I'd love for someone with real experience extracting/stealing these to tell me why I'm wrong about this and why it'll get us hacked.

Security of Passkeys in the Google Password Manager

Posted by Arnar Birgisson, Software Engineer We are excited to announce passkey support on Android and Chrome for developers to test today, ...

Google Online Security Blog

oh, well, even you #isaca

#passwordpolicy

Passwords generated by pass shall not pass.
MyAnimeList

  • Password must be between 6 - 50 characters long and contain at least two of the following: uppercase, lowercase, numbers and symbols.
  • Password may only contain letters, numbers and the following symbols: ! "#$%&'()*+,-./:;<=>?@[]_{|}~.

@MyAnimeList #passwordistoostrong #passwordpolicy @duffn

Pass: The Standard Unix Password Manager

Pass is the standard unix password manager, a lightweight password manager that uses GPG and Git for Linux, BSD, and Mac OS X.