October 28th, 2005, 09:13 PM
Yes, I can see the various objections.
My main reservation is that any sort of auditing retrospectively is a weakness in the process. If I have set a complexity policy then I would want that...
October 28th, 2005, 11:52 AM
OK catch what we are saying is:
1. Set system rules for passwords.
2. Test on entry and refuse non-compliant ones.
Basically you are arguing for a proactive, rather than a reactive approach?
...
October 27th, 2005, 11:31 PM
Hey catch ,
Could you give us a professional view on this?
Like I would take the view that rainbow tables are brute force.............so it will depend on the size of tables and processing...