[KLUG Members] Passwd help

Adam Williams members@kalamazoolinux.org
Mon, 20 Oct 2003 13:38:58 -0400 (EDT)

Previous message: [KLUG Members] Sendmail Question
Next message: [KLUG Members] Passwd help
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>I 100% agree with everything Adam has said. I work for a school district too,
>and if anything, better password security is needed, not less. There are a LOT
>of legal ramifications to this (FERPA, HIPPA, etc). Make it easier for the bad
>guys (which is sometimes your students) and you're widening an already big
>security hole (end users).
>Do you have a security policy adopted by your board? 

If not - "WHINE!"  WHINE LOUD!  Until you get one.  If (optimistically 
"when") legal rumblings occur this will be instrumental in not bieng "the 
guy".  You "implemented and enforced the requirements of the official 
security policy".  Get other IT staff to whine with you; a security 
policy is for your own good.

>SANS is putting together a "Security Awareness" web based training for users. In
>their demo, they have a GREAT true story of why secure passwords are important. 
>https://www.sans.org/awareness/
>Probably the saddest thing is that it appears network security is not modeled
>from the top down in your district. :(

Is there a place (or corporation) where it is?  If so, I want to go work 
there.  Having decent security is almost more of a constant political 
problem than it is a technological problem.  Humans are *LAZY*.

Previous message: [KLUG Members] Sendmail Question
Next message: [KLUG Members] Passwd help
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]