• AtemuOPM
    link
    fedilink
    arrow-up
    1
    ·
    11 months ago

    Didn’t know the NIST had a standard which strongly discourages stupid practices like periodic password changes or character case requirements.

    (Juicy bits are in section 5.1.1.2.)

    It’s actually quite well written.

    Could be great for shoving into the face of people who insist on this sort of “security measures”.