From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-user+bounces-113514-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1OjXRe-0003B2-Pj
	for garchives@archives.gentoo.org; Thu, 12 Aug 2010 13:03:43 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 6D891E0A81
	for <garchives@archives.gentoo.org>; Thu, 12 Aug 2010 13:03:42 +0000 (UTC)
Received: from smtpout.karoo.kcom.com (smtpout.karoo.kcom.com [212.50.160.34])
	by pigeon.gentoo.org (Postfix) with ESMTP id 17A57E0896
	for <gentoo-user@lists.gentoo.org>; Thu, 12 Aug 2010 12:56:19 +0000 (UTC)
X-IronPort-AV: E=Sophos;i="4.55,357,1278284400"; 
   d="scan'208";a="210030674"
Received: from 213-152-39-90.dsl.eclipse.net.uk (HELO compaq.stroller.uk.eu.org) ([213.152.39.90])
  by smtpout.karoo.kcom.com with ESMTP; 12 Aug 2010 13:56:18 +0100
Received: from funf.stroller.uk.eu.org (funf.stroller.uk.eu.org [192.168.1.71])
	by compaq.stroller.uk.eu.org (Postfix) with ESMTP id 296B86C473
	for <gentoo-user@lists.gentoo.org>; Thu, 12 Aug 2010 13:56:16 +0100 (BST)
Message-Id: <69CC61AA-F54C-4FAE-AE2D-20E6E3ED3E67@stellar.eclipse.co.uk>
From: Stroller <stroller@stellar.eclipse.co.uk>
To: gentoo-user@lists.gentoo.org
In-Reply-To: <4C62E90A.20601@gmail.com>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
Mime-Version: 1.0 (Apple Message framework v936)
Subject: Re: [gentoo-user] Rooted/compromised Gentoo, seeking advice
Date: Thu, 12 Aug 2010 13:56:16 +0100
References: <AANLkTikcKYS+pTQOesC_rmqVwjwN80PKqrTuv3TPAq_h@mail.gmail.com> <20100810011805.GA15816@linux1> <AANLkTi=x3ttjbgf0pXcwiYKRF_dcE0OHoRKD-U+2bdr4@mail.gmail.com> <201008102050.49976.alan.mckinnon@gmail.com> <AANLkTik5VR9hCbdBQjRc7J-yLt-562xmrdPSMxHYEe2z@mail.gmail.com> <FB1073AF-50D2-4853-A6BB-CB0115DAA6C7@stellar.eclipse.co.uk> <4C62E90A.20601@gmail.com>
X-Mailer: Apple Mail (2.936)
X-Archives-Salt: 6998633a-549a-4143-b5b3-7a1994f8d15a
X-Archives-Hash: 67291aea2cd8d4c3d0ac0b88505ebedd


On 11 Aug 2010, at 19:16, Dale wrote:
> Stroller wrote:
>>
>> On 10 Aug 2010, at 20:22, Hazen Valliant-Saunders wrote:
>>> ...
>>> Good Luck getting people to change them frequently and haveing  
>>> your techs and it departments meeting complexity and length policy.
>>
>> I'm pretty sure that's a trivial setting for expiration policy and  
>> a PAM plugin or option to enforce complexity.
>
> Thing about changing passwords to often, the person forgets what the  
> password is.

Then don't change it with frequency.

It was Mr Valliant-Saunders who seemed to be saying that that is  
difficult to enforce, and I was merely replying to him.

Stroller.