As a security guy - as soon as I can get federal auditors to agree, I’m getting rid of password expiration.
The main problem is they don’t audit with logic. It’s a script and a feeling. No password expiration FEELS less secure. Nevermind the literal years of data and research. Drives me nuts.
Tech workers - what did your IT Security team do that made your life hell and had no practical benefit?
One chestnut from my history in lottery game development:...
Weekly “What are you playing” Thread || Week of September 10th
New thread!...