|
|
10 Tips for Better Password Management
By Ericka Chickowski
2008-04-21
Article Views: 10122
Article Rating:  / 17
| Rate This Article: |
|
| Add This Article To: |
|
|
10 Tips for Better Password Management (
Page 1 of 3 ) Any security expert will tell you that shoring up user-authentication information is essential to building the foundation of a solid security program. A good way to start is to employ a few of the login and password-management best practices detailed here.
Baseline has culled together well-known and not-so-established login and passowrd management practices, techniques and short cuts for users and administrators alike. Use these tips to help shore up your company’s practices.
1. Crack your own passwords.
If you want to make sure users are developing strong enough passwords, employ methods similar to those of the bad guys. Consider “pre-cracking” passwords when they are initially established, using a dictionary attack to ensure they are up to snuff before they go into service. If this isn’t feasible, conducting random password audits using tools such as Cain & Abel can at least keep users on their toes.
2. Ban the use of post-it note password reminders.
No matter how secure your password-management tools or IT password practices are, if user monitors are covered in sticky notes with written passwords, your work is meaningless. Ban this practice and consult with management to ensure that enforcement efforts have teeth.
3. Automate regular password updates.
No password is perfect, especially one that has been around for a long time. Make sure users are changing passwords at least quarterly by automating the process. If you don’t, they probably won’t comply.
| | Discuss 10 Tips for Better Password Management | | | | | | | Well written article. Yes, sticky notes should be banned as well as notes under the... | | | | | | Don't do this, make the users do that...none of which helps enlist the users in... | | | | | | Why not make password life depend on their security. If you insist on a short... | | | | | | I have spent much of my working life waiting for IT to reset my passwords, because... | | | | | | I agree, it is important to use passwords in the appropriate way, however, people... | | | | | | I agree completely. Insisting people must have nonsense PWs, that must not relate... | | | | | | Sorry for the apparent slam Ericka Chickowski but every one of the above posts are... | | | | | | Thank you, Dak. I work as a communicator in an IT department, and yours is a point... | | | | | | There are three levels of security and if it REALLY needs to be secure, we should... | | | | | | I've heard this ill advice over and over: Force users to come up with long, cryptic... | | | | | | One reason to change the password, even an awesome one, is in the event the password... | | | | | | Thank you! Thank you! Thank you!....
For NOT putting the content of this article... | | | | | | Passwords are a pain. Get over it! Unfortunately passwords are now of fact of... | | | | | | >>> Post your comment now! | | | | | |
|
 |
|
|
|
|
| FEATURED ZIFF DAVIS ENTERPRISE CONTENT |
Brought to You By
 | |
|
| |
|
|
(Sponsor)
(Sponsor)
(Sponsor)
