What should a password policy include?

What will be an ideal response?


A comprehensive password policy is critical, as a user name and password are often all that stands between an attacker and access. A password policy should include the following:
- Change passwords regularly on system-level accounts
- Require users to change their passwords regularly
- Require a minimum password length of at least eight characters
- Require complex passwords
- Passwords can't be common words, words found in the dictionary, or slang, jargon, or dialect
- Passwords must not be identified with a particular user
- Never write a password down or store it online or in a file on the user's computer
- Don't hint at or reveal a password to anyone over the phone, in e-mail, or in person
- Use caution when logging on to make sure no one sees you entering your password
- Limit reuse of old passwords

Computer Science & Information Technology

You might also like to view...

If the Notification area contains more icons than can fit in the allocated space, the ____ displays additional notification icons.

A. Applications button B. System Tools C. Show hidden icons button D. Control Panel

Computer Science & Information Technology

Every item stored within a hash is assigned both a key as well as a unique index position.

Answer the following statement true (T) or false (F)

Computer Science & Information Technology

Case-Based Critical Thinking Questions ? Case 9-1 Terin has created a page for a training institute that will allow users to browse the training courses provided at the institute. Terin uses JavaScript to write the content using objects and functions. The objects defined in the code are document object, history object, screen object, navigator object, and the location object. ? Terin wants to create an object that will contain information about the browser application. Which of the following objects must Terin create to accomplish this??

A. ?navigatorobject B. ?location object C. ?history object D. ?document object

Computer Science & Information Technology

The statement ____ is a direct replacement for the statement puts(message);.

A. printf("%s",message); B. printf("%s\n",message); C. scanf("%s",message); D. scanf("%s\n",message);

Computer Science & Information Technology