I just ran across this document not long ago. Its very interesting. I just though I would share it with the rest of you since is is security related. I hope you enjoy. Tell me what you think about this.
DOD Password Management Guideline
Printable View
I just ran across this document not long ago. Its very interesting. I just though I would share it with the rest of you since is is security related. I hope you enjoy. Tell me what you think about this.
DOD Password Management Guideline
Good post Rogue.. That's alot of reading to do so
I'll have to get back to you later on what my opinion
on the article is.. I haven't read much of it but so far
it's really intersting. Keep up the good werk. ;)
Remote_Access_
heheh yeah i already had that but i didnt take it seariously after reading it coz as you seen in the document.. its damn old.. hehe but yeah... good source of information too..
btw i heard DoD is now using Biometrics Security System in almost all of their systems.. hehe
Quote:
Originally posted by s0nIc
heheh yeah i already had that but i didnt take it seariously
I thought it was a hoax of some sort but after reading it my opinion has changed. Only the DoD could come up with stuff like-
Quote:
The best way of dealing with a compromised password is to change it....
LOL.....I think they need more funding!
4.1.2.1 Preventing Exposure
There are methods that can be implemented to prevent exposure of
a password to the SSO after it has been generated. One technique is to print
the user's password on a sealed multipart form in such a way that it is not
visible on the top page of the form. The SSO would then protect the sealed
password appropriately until it could be delivered to the user. In this case,
the password is generated randomly by the ADP system and is not known by the
SSO.
hehehe ;) right...
great post +greens
Heh. Just reviewing some of my posts. . . thought the new people on AO might like to see this one.
Just curious....why is it negative? All the posts that got AP's that I see got positive ones....
Deb ;)
Yeah, I read this before. It is a pretty good read, unfortunately, the link is dead. I liked it, and it could help come people be more secure, rogue made a good post. But does anybody have a working link?? I think it could still help people.
I'm getting an Error 404 when i try to follow the link. Anyone else having this problem? :(
Here's a working link to a text file of the DOD Password Management Guidelines (from the government, no less). Enjoy. :-)
http://csrc.nist.gov/secpubs/rainbow/std002.txt
AJ
Thanks AJ. :)
HAHA! ! ! Someone has taken it upon theirself to send me negative points for this post. Here is their reason for giving them to me. . . . .
I never said I wrote it. I said it was something everyone should read. So get off your high horse.Quote:
shouldnt get so many positives for something you didnt do
Thanks RogueSpy and AJ
Mike
hey RogueSpy, we should bring this thread back also :D
Good Idea. :P ;)