cron@feddit.org to Cybersecurity - Memes@lemmy.worldEnglish · edit-2hace 4 mesesYour password has expiredfeddit.orgimagemessage-square86fedilinkarrow-up1596arrow-down17file-text
arrow-up1589arrow-down1imageYour password has expiredfeddit.orgcron@feddit.org to Cybersecurity - Memes@lemmy.worldEnglish · edit-2hace 4 mesesmessage-square86fedilinkfile-text
minus-squareVaryk@sh.itjust.workslinkfedilinkarrow-up23·edit-2hace 4 mesesoh i didn’t know that, are companies finally realizing that creating and trying to remember new passwords causes more trouble then keeping one really good password?
minus-squareslazer2au@lemmy.worldlinkfedilinkEnglisharrow-up11arrow-down5·hace 4 mesesOnly on accounts that have MFA is password rotation no longer recommended. If the account is non MFA protected password changes are still recommend.
minus-squareVaryk@sh.itjust.workslinkfedilinkarrow-up6arrow-down1·edit-2hace 4 mesesreally? what’s the standard for that? like how often should you be rotating your password? I assumed many people forget their new passwords (because I often do) and become compromised than are protected by continually rotating passwords.
minus-squareskittlebrau@lemmy.worldlinkfedilinkarrow-up6·hace 4 mesesI have over 500 passwords in my password manager. I don’t know what I’d do without it.
minus-squareslazer2au@lemmy.worldlinkfedilinkEnglisharrow-up3arrow-down1·hace 4 mesesIt’s one of the updated NIST recommendations, I don’t recall which one but it specifically calls out no password cycling for MFA protected accounts.
oh i didn’t know that, are companies finally realizing that creating and trying to remember new passwords causes more trouble then keeping one really good password?
Only on accounts that have MFA is password rotation no longer recommended.
If the account is non MFA protected password changes are still recommend.
really? what’s the standard for that? like how often should you be rotating your password?
I assumed many people forget their new passwords (because I often do) and become compromised than are protected by continually rotating passwords.
I have over 500 passwords in my password manager. I don’t know what I’d do without it.
It’s one of the updated NIST recommendations, I don’t recall which one but it specifically calls out no password cycling for MFA protected accounts.