Nemeski to [email protected]English • 2 months agoNIST proposes barring some of the most nonsensical password rulesarstechnica.comexternal-linkmessage-square8fedilinkarrow-up191arrow-down10cross-posted to: [email protected]technology
arrow-up191arrow-down1external-linkNIST proposes barring some of the most nonsensical password rulesarstechnica.comNemeski to [email protected]English • 2 months agomessage-square8fedilinkcross-posted to: [email protected]technology
minus-square@[email protected]linkfedilinkEnglish7•2 months agoPlease don’t take those recommendations out of context. They also recommend MFA, but people only ever bring up the “no rotation” bit.
minus-square@[email protected]linkfedilinkEnglish5•2 months agoAre they at least recommending non-SMS MFA now?
minus-square@linearchaoslinkEnglish4•2 months agoEmphasis was from the article, not mine. They also recommend not using knowledge based prompts, allowing at least 64: characters,
Please don’t take those recommendations out of context.
They also recommend MFA, but people only ever bring up the “no rotation” bit.
Are they at least recommending non-SMS MFA now?
Emphasis was from the article, not mine.
They also recommend not using knowledge based prompts, allowing at least 64: characters,