>Even more off topic - why do people think regular password expiry improves >system security (as opposed to enforcing a password complexity constraint)?
i think the UNIX security paper discussed that. (F. Grampp and R. Morris, "UNIX Operating System Security", BSTJ, Vol. 62, No . 8,. 1984)
