Had to bug an SA just this morning because my password expired. I didn’t think I would need it because we all log in with smart cards and pins now, but my computer also wants my active directory password if it has expired. Neat, huh?
Last week I was talking with the head admin and he was saying that one thing their latest hire (a few months ago) brought to the team was the idea of long but memorable passphrases. Uh, like diceware? I asked; which has been around since the mid 90’s. He hadn’t heard of it.
But then, I was in the SA’s office this morning about to type in my new password when she rattled off “At least 12 characters long, mix of numbers and special characters, and no dictionary words”. What? So, they aren’t all on the same page in that group.
