Microsoft says mandatory password changing is “ancient and obsolete”:
And annoying too. And does very little to improve security.
We just need to get PCI to stop forcing that and everyone will be more better off.
I have never understood the PCI-DSS requirements to force users to change the password often.
Users just ended up with simplep@assword123
and the next password:
and so on lol
A instance dedicated - but not limited - to people with an interest in the GNU+Linux ecosystem and/or general tech. Sysadmins to enthusiasts, creators to movielovers - Welcome!