Re: WG Last Call (third time's the charm?) for SSH core drafts

To: Darren Moffat <Darren.Moffat%eng.sun.com@localhost>
Subject: Re: WG Last Call (third time's the charm?) for SSH core drafts
From: Bill Sommerfeld <sommerfeld%east.sun.com@localhost>
Date: Mon, 04 Feb 2002 17:59:31 -0500

> Actually it might even be better to have it as a MUST since not doing
> so allows for the potential of a client/server pair that can bypass admin
> policy and we shouldn't really encourage that.

Well, the password policy should be entirely enforced by the server.

MUST would rule out a "soft password expiration" policy where the
server could strongly suggest, but not require, a password change, for
some time interval before the change became mandatory..

					- Bill

Follow-Ups:
- Re: WG Last Call (third time's the charm?) for SSH core drafts
  - From: Joseph Galbraith

References:
- Re: WG Last Call (third time's the charm?) for SSH core drafts
  - From: Darren Moffat

Prev by Date: Re: WG Last Call (third time's the charm?) for SSH core drafts
Next by Date: Re: WG Last Call (third time's the charm?) for SSH core drafts
Previous by Thread: Re: WG Last Call (third time's the charm?) for SSH core drafts
Next by Thread: Re: WG Last Call (third time's the charm?) for SSH core drafts
Indexes:

Home | Main Index | Thread Index | Old Index