[TYPO3-english] Password expiry for be_users
Jigal van Hemert
jigal.van.hemert at typo3.org
Thu Oct 18 19:28:55 CEST 2012
Hi,
On 18-10-2012 15:35, Tony Lush wrote:
> be_secure_pw does a pretty good job of securing BE Users by requiring
> passwords of a defined length that have your defined combination of
> lowercase, uppercase, numeric, and special characters.
The Bastard Operator From Hell has returned? :-)
IMO it's better to encourage longer pass-phrases which are easy to
remember, but in combination with Salted Passwords an absolute nightmare
for any hacker.
Another option is to enable OpenID for you BE users. Even easier for
them to login with.
--
Jigal van Hemert
TYPO3 Core Team member
TYPO3 .... inspiring people to share!
Get involved: typo3.org
More information about the TYPO3-english
mailing list