who come up with requirements for password change frequency.....
There is a data system I access regularly that is insane about the password. It has to have at least 8 characters with at least one number and one symbol...and if you don't change it frequently enough (monthly, I think), it requires you to change it before access is allowed. I had a good one for a while that included Ctrl-Alt Swastika Double-clutch+ìÛ (carried out to 18 places..). When prompted for a "newer" password, I was just adding a number on the end, starting with 1. After about four or five changes, it quit allowing me to just add a consecutive number. The software prompted me something about "predictability"...:pinch:
it's just a bunch of crap...I want back my old password of '5280'...
We recently contracted out our IT. I can't install anything on this machine any more because I'm not an administrator. We had the nonsense about changing passwords every 30 days, but thankfully, upper management saw that was ridiculous and had it done away with.
Just last week, my helped logged into his machine and was working on a drawing. I wanted the computer moved to a different office. We moved it, and when he tried to log back in, it wouldn't let him. After screwing with this for 15 minutes, and getting rather hot, I called the IT people and told them to reset the password. They did. When I logged my helper in, it wanted a new password, which is now "@ssholecomputer......"
25 most used passwords...
1. 123456 (Unchanged)
2. password (Unchanged)
3. 12345 (Up 17)
4. 12345678 (Down 1)
5. qwerty (Down 1)
6. 123456789 (Unchanged)
7. 1234 (Up 9)
8. baseball (New)
9. dragon (New)
10. football (New)
11. 1234567 (Down 4)
12. monkey (Up 5)
13. letmein (Up 1)
14. abc123 (Down 9)
15. 111111 (Down 8)
16.mustang (New)
17. access (New)
18. shadow (Unchanged)
19. master (New)
20. michael (New)
21. superman (New)
22. 696969 (New)
23. 123123 (Down 12)
24. batman (New)
25. trustno1 (Down 1)
FL/GA PLS., post: 369503, member: 379 wrote: most used passwords...
surveyor
Surveyor
Surveyor1
Beerleg
PLSSsux
PLSSrules
[topcon/leica/trimble]sux
[topcon/leica/trimble]rules
For everyone that remembers Spaceballs:
[MEDIA=youtube]a6iW-8xPw3k[/MEDIA]
About 20 years ago (pre 9/11) I was told by a fairly high-level person in a U.S. Government Agency that their system had become so difficult to access due to new security measures and password requirements that most if not all of those under him in the hierarchy spent vast amounts of time doing nothing. They were unable to have the software on individual workstations, it had to reside on the "Master Server." Unfortunately, the "Master Server" was so encrypted and protected that the workers were denied access except when their supervisor was in the building. The supervisors were often out of the office - sometimes for 3 or more days at a time. Again - this was pre 9/11... The Agency? U.S.B.L.M. - that's right, the Bureau of Land Management. I can't imagine what it must be like now...
Jim in AZ, post: 369517, member: 249 wrote: About 20 years ago (pre 9/11) I was told by a fairly high-level person in a U.S. Government Agency that their system had become so difficult to access due to new security measures and password requirements that most if not all of those under him in the hierarchy spent vast amounts of time doing nothing.... I can't imagine what it must be like now...
When I worked for the Highway Dept. (1995) I was the Division Computer Liaison with Admin capability(imagine that!). I had something like 90 employees with 65 or so CPUs and spent most of my time "changing" passwords because people would forget...over a weekend!
That was back in the day when MicroStation (V4..!) required a "dongle". Although I eventually got the protocol changed, Data Processing (the State entity that actually owned the computers) would NOT allow the field offices to have the dongle. Their archaic protocol considered the hardware lock proprietary and I was the only one allowed to possess them. I know that sounds crazy, but it was true for about a month. I had 15 field crews with MS installed on their computers (scattered all over the State), but they could not use it.
I remember filling out a mountain of paperwork trying to justify "why" the user needed a proprietary software lock. I don't remember what I put on the forms, but I bet it was colorful...
I bounced most of the places that started requiring a new password every 60 days and those and others that would not accept duplicate passwords that its search found on your computer.
My banks have a 3+ level password event to verify your identity with icon pick, picture pick, security question pick and enter these warped looking letters and numbers that exist in a little box. At random it will send email to your user mail and have a link to click to begin the process.
The thing I despise most was when HughesNet insisted upon the last 4 numbers of my SS# for verification. My gawd, it is a person's right to never give out that info, company policy my arse...........HughesNet got fired a few weeks ago and they are "h i s t o r y" around here.
Please, don't get me started on this, I can vent all day, ........oh my......phew....fdumpt........&*^%$*%(&%
I need another blood pressure pill already.......it's 5 o'clock somewhere.......AOK
:beer:
If there is a special place in hades for IT "people", would that mean there is a special place in heaven for those of us who have to deal with them?
I wouldn't be able to do my job on a computer that I didn't have admin rights on; fortunately, our two-person IT department doesn't aspire to rule the world. The Barracuda filter is a pain in the arse, a lot of useful sites (e-bay, Amazon, YouTube) are blocked. I finally convinced them that I need access to YouTube because more and more vendors are putting product info and training video up there instead of hosting it themselves.
Our internet is completely locked down. We had to request SurveyorConnect be added to a safe site list. No one gets admin rights without written consent from the commissioner of Major League Baseball (or so it seems), and there are passwords for:
System Login, Windows
Time Card App
Travel Department and Expense Reporting
Motorpool
Mandatory Training Application (Sexual Harassment, Violence in the Workplace...)
Server Access
And I'm probably forgetting a few more. Each password needs to be changed at different intervals. So after a year or so of being in the system, each password is different. The IT department is probably inundated with forgotten password requests. Password duration is anywhere from 30-90 days depending on which department it is used for.
FL/GA PLS., post: 369503, member: 379 wrote:
25 most used passwords...1. 123456 (Unchanged)
2. password (Unchanged)
3. 12345 (Up 17)
4. 12345678 (Down 1)
5. qwerty (Down 1)
6. 123456789 (Unchanged)
7. 1234 (Up 9)
8. baseball (New)
9. dragon (New)
10. football (New)
11. 1234567 (Down 4)
12. monkey (Up 5)
13. letmein (Up 1)
14. abc123 (Down 9)
15. 111111 (Down 8)
16.mustang (New)
17. access (New)
18. shadow (Unchanged)
19. master (New)
20. michael (New)
21. superman (New)
22. 696969 (New)
23. 123123 (Down 12)
24. batman (New)
25. trustno1 (Down 1)
I always thought "password" was the most commonly used.
Andy
This is an oversimplification of the whole issue, but the sentiment rings true.
