That’s cause people think changing the password all the time is safer, all it does is force people to choose the easiest password or write them on a piece of tape under the mouse mat.
I’m an IT guy and we have mandatory password changes. I just increment the numbers on my password every time since it (at least for now) is sufficient for our ruleset. I assume that majority of our users does something similar.
That’s cause people think changing the password all the time is safer, all it does is force people to choose the easiest password or write them on a piece of tape under the mouse mat.
deleted by creator
I’m an IT guy and we have mandatory password changes. I just increment the numbers on my password every time since it (at least for now) is sufficient for our ruleset. I assume that majority of our users does something similar.
I am glad NIST says if it’s protected by MFA you don’t have to reset passwords.