he could tell you, but then he'd have to kill you.
We may earn a small commission from affiliate links and paid advertisements. Terms
What do you do Calesta?
RFID + randomized keypad + almost 20 character password that changes every 45 days, can't reuse within 6 years. Write it down, go to jail.
smart cards FTW!PIV/CAC is where its at. There are only a few internal portals i need to use my AD credentials. Check out steve gibsons password haystack write up on grc(dot)com
I hope your phone is password protected.. lol. Do they have mobile apps that are secure for storing pw's? I bet a lot of people do that.i just keep a text document of my passwords on my phone. i just update the document whenever i change/increment a password.
RFID + randomized keypad + almost 20 character password that changes every 45 days, can't reuse within 6 years. Write it down, go to jail.
Runs an ice cream shop downtown.
LOL. I hope all divisions aren't like that. I almost applied with your company for a job in Colorado.
I hope your phone is password protected.. lol. Do they have mobile apps that are secure for storing pw's? I bet a lot of people do that.
Sounds like you guys need to implement a single sign on.
You wouldn't believe how many systems here are like that.
On the other hand, you wouldn't believe how many have the admin user/pass on a label on the machine...
most of the systems i use have:
8-digit RSA pin (has to be 4 letters 4 numbers), doesnt change
+ RSA keycode, changes every minute
+ Windows login password, system unique, changes every 30 days
some of the systems have another password layer when remotely logging into the Virtual Workstation
and then i have backup systems on another LAN, completely separate and with their own passwords.
the UNIX boxes we have left only implement a group account with one password that never changes. (these boxes are logged in 24/7 and the password hasnt changed for like 10 years lol)
the LINUX boxes use RSApin + RSA key only.
wtf, do you work at server vault
You can still use it to cover 90% of logins. I'm talking corporate apps. Or within isolated networks having another CSO solution.Not possible- quite a few of the systems have to be completely isolated from other networks.
We also have isolated networks, remember we host the most used SSL CA in the world.