So you use Passwords Managers, you don't recommend against password expiration because it's "inconvenient"! https://twitter.com/CESG_HMG/status/720932405608124416 …
@khaxan A long-term pw that doesn't change you can memorize. The N'th one after forced expiration? Good luck...
-
-
@RichFelker I don't need to memorize anything if I'm using a pwd manager, & most users don't bc they use same easy pass 4 everything forever -
@khaxan I agree it's a problem, and best solved by pw managers (except perhaps most-critical pw's that should be strong & memorized only). -
@khaxan But expiration is not necessary if people use pw managers, and I don't see any evidence that it encourages ppl to switch to them. -
@khaxan It very well might encourage ppl to use the same pw across all sites though (switch to common next-pw after old one expires).
End of conversation
New conversation -
-
-
@RichFelker and i'm not even limiting this to regular users, i mean sysadmins who use same pass for servers, sans, etc. -
@khaxan Uhg. Sysadmins should not even be using passwords for servers. Pubkey auth has been around forever now.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.