suggestion - do away with the 180 day password limitation

merk

Extraordinary Member
Joined
Aug 11, 2009
I'd like to request/suggest you do away with the 180 password re-use limitation. Forcing people to pick a new password is just a recipe for forcing them to always pick a new password since they (me) wont remember it and will use the password reset, at which point they'll have to pick a yet even more obscure password which they'll (me) forget, forcing a password reset ... etc etc
 
think of it this way. 180 days is half of a year!!! I mean many of my employment places make us change our password every 30 days. It is for your own security as well as many people tend to use the same password throughout the internet making it more vulnerable every day. That is my explanation as to why we have it in place.
 
Oh i know why they have it in place - i just dont think it's worth doing. I can understand requiring someone to have a password with at least X number of characters or having at least 1 letter and 1 number. Obviously you don't want people using 'password' as their password. But I think we're probably safe from brute-force attacks, especially when there's a 15 minute wait between 5 failed attempts. And forcing a password change and a 180 day wait is really just protection against brute force as far as i can see.
 
Just got done Talking to Mike and I think he will be removing the mandatory password change every 180 days
 
Late now. But I would support merk's lonely contribution to this thread. In a security issue, it can be a good option. On a forum it should be a free choice for the members. Anyway - gone now!!
 
Last edited:
Re: Mandatory Password Change

This was a security feature for the protection of our members so that their accounts wouldn't be hacked due to having a weak password. Make sure you use a strong password that you will remember. To do this, check out this site:

Microsoft Secure Password Checker: Link Removed due to 404 Error

The mandatory password changes have been removed due to difficulties people were having with it.
 
Hate it

I hate it. Glad it's gone. Hope I can go back to my old one so I dont have to *think* ...yeah... I should be getting paid to THINK
 
180 days password limitation is good to me personally, but it could be worth making it optional for those who would rather not have it.
 
Back
Top Bottom