I ran across Tom Olzak’s post where he quotes from an SANS article by Daniel Wesemann, Password rules: Change them every 25 years. I disagree with both of them on a few points.
First, Olzak notes in his introductory paragraph that
Quick Links
-
Recent Posts
- Create a Help Desk for Data
- Some Periodic Reviews Provide Little Assurance
- Blogging about Internal Audit (10 tips)
- Mack-the-Auditor Gets Audited! Part 3
- Mack-the-Auditor Gets Audited! Part 2
- Mack-the-Auditor Gets Audited! Part 1
- Why this pic on this blog?
- Don’t Miss all the Free Advice & Info
- Auditor Struggles, Part 4
- Auditor Struggles, Part 3
Top 7 Posts
Categories
Links
Blogroll
- Audit Monkey (not real active) The life and times of an Internal Auditor
- risk3sixty IT audit blog
- SANS Handler's Diary Daily security pulse
- Security Monkey (not active, but still good content) Great security blog
ITauditSecurity · IT audit/security HOW-TOs, analysis, & humor
