[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: RFC: changes to default password strength checks in pam_unix

> Some schools even use the same password for all lower grade users
> instead of providing very easy passwords, and I am not sure if that is
> better.  I am convinced the schools will come up with some new an
> innovative insecure way to work around any enforced password policy,
> so it might not matter either way. :)

I doubt short passwords are a problem there, school computers are
usually in their own, private network, and hopefully firewalled against
the evil outside. If one kid "hacks" another kid's account - well.... I
think we could live with that.

Imho school computers should boot from network and/or use COW anyway, so
it's just a reboot to restore the original system. And the kid's data
can be backuped.

That's pretty much different in University networks of course - but I
guess people there are old enough to learn to use proper passwords.


Bernd Zeimetz
<bernd@bzed.de>                         <http://bzed.de/>

Reply to: