W dniu 28.10.2024 o 03:45, Alan Altmark pisze:
On Sat, 26 Oct 2024 23:27:38 +0200, Radoslaw Skorupka<[email protected]>
wrote:
BTW: a user can have *both* passphrase and password. The second one can
be understood as emergency one.
I beg to disagree. Having the password undoes any enhanced security you get
from having a phrase.
The only reason a user should have a password is if they are using a portal
that does not have support for phrases, or you migrating to phrases. But at
some point, you need to upgrade the portal and/or remove the PASSWORD.
Something was "lost in translation". I don't say it is good to have both
all the time.
I mean the password is good for some *limited transition period*. Just
to help people who recognized some application not ready for
passphrases. Sometimes you're out of office or just busy, but the person
has urgent need to logon, etc. etc.
@Dave
As I mentioned a user can have both passphrase and password, but simple
ALU user NOPASSWORD makes him passphrase only. No unknown password. Just
lack of password.
--
Radoslaw Skorupka
Lodz, Poland
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
