 |
|
|
ArGoStuff User to User Support Forums
|
 |
|
 |
| Author |
Messages |
|
benwylie
Posts: 3
Online: 
ArGoNuke Recruit
 |
| 12-15-2006 10:16 AM |
|
What are the Password Requirements?
Is there any point in having a very strict and secure password requirement policy on a site like this where obtaining someone elses password really isn´t going to help you very much.
It won´t let me change to a password of six characters with a mixture of letters and numbers.
Thanks,
Ben
|
|
|
|
|
robin
Posts: 2289
Online:
ArGoNuke Rear Admiral
|
| 12-15-2006 12:53 PM |
|
The issue with passwords is the fact that it protects not only the end user but other users and stops harvesting of email addresses.. Another issue, is when you are on the forum, you are not just on the web but on one of Steve's servers so he has too protect his own interest as well.
in my opinion you can never be to secure in thie electronic day and age
Robin |
|
|
|
|
SteveT
Forum Administrator
Posts: 2577
Online:
ArGoNuke Admiral
|
| 12-15-2006 2:40 PM |
|
Hi Ben,
The password requirement are this: minimum 7 characters. There is no requirement for numeric values in the password.
As Robin mentioned, I do need to maintain a level of security to protect my own servers and users, but the 7 character minimum is a DNN default.
|
|
 Regards,
Steve Topilnycky
Top Cat Computing
http://www.topcatcomputing.com |
|
|
benwylie
Posts: 3
Online:
ArGoNuke Recruit
|
| 01-10-2007 2:14 PM |
|
7 letters being the default seems strange to me, as in my experience 6 letters minimum is standard on the internet for this type of site (ie not internet banking etc). It's just annoying when you have a standard password for these sites, not to be able to use it. I would like to recommend just a 6 letter minumum password just for the convenience of your users.
Cheers,
Ben
|
|
|
|
|
SteveT
Forum Administrator
Posts: 2577
Online:
ArGoNuke Admiral
|
| 01-10-2007 2:37 PM |
|
Hi Ben,
The 7 Letter minimum is actually the default setting. I could enable the requirement of alpha-numeric, but I chose not to. I will take your recommendation under advisement.
|
|
Regards,
Steve Topilnycky
Top Cat Computing
http://www.topcatcomputing.com |
|
|
benwylie
Posts: 3
Online:
ArGoNuke Recruit
|
| 01-10-2007 2:43 PM |
|
Hi Steve,
I realise it is the default, I just think it is a bit strange for a default! The alpha numeric thing i don't mind so much (if it were to be enforced) because that is fairly standard as well for many internet passwords.
Don't get me wrong, it isn't a life and death matter and I know you have far more important things to talk about and do, as do I, but it would be slightly more convenient for me if the minumum were shortened to six!
Have a very happy new year!
Ben |
|
|
|
|
robin
Posts: 2289
Online:
ArGoNuke Rear Admiral
|
| 01-10-2007 9:17 PM |
|
I am amazed that people are still questioning password security Windows 2003 server by default makes you use 7 charaters minimum plus with a combination of numbers letters in both lower and upper case, plus other restrictions as follows:
Password history, select the Define this policy setting check box, set the value of Keep password history to 24,
Maximum password age, select the Define this policy setting check box, set the value of Password will expire in to 42,
Minimum password age, set the value of Password can be changed after to 1.
Minimum password length, select the Define this policy setting check box, set the value of Password must be at least to 7,
Password must meet complexity requirements, select the Define this policy setting in the template check box,
Store passwords using reversible encryption
With this in mind Steves password requirements are pretty weak and easy going, see links belwo for further info..
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/directory/activedirectory/stepbystep/strngpw.mspx
Robin
|
|
|
|
|
robin
Posts: 2289
Online:
ArGoNuke Rear Admiral
|
| 01-10-2007 9:20 PM |
|
Another solution for Ben would be for him too change all of his other passwords to 7 characters so that they are in line with the one he has to use with Argo??
My passwords as a minimum are always 8 chararcters or more
Robin |
|
|
|
|
|
| You are not authorized to post a reply. |
|
|
|
ActiveForums 3.7
|
|
|
|
|
|
 |
| Mail Server v1.0.5.8 | |
Mail Server
- Mailbags now have an option to accept mail only when specified server is down - will help to fight
with spam which attempt to deliver mail bypassing the main server;
- When delivering mail, if main exchanger returns 4xx reply (temporary problem), the server will not
try other exchangers, will retry later the main exchanger;
- Server options moved from registry to a XML file. 64 bit versions of Vista and 2008 server appear
to be having access rights problems to the Windows registry, and the change will make our server more
compatible with 64 bit versions;
- Added an option to specify the number of lines on the log screen, when using the user interface.
Was causing memory problems if left running for long time;
- Fixed couple of problems, which were showing when SQL server was set up to use
case sensitive SQL statements;
- Made changes in the remoting interface to allow logging in using aliases;
Web Interface
- Made changes to allow logging in using aliases;
- When viewing folders, web interface now displays the name of logged in user;
| | 11/12/2008 2:31:31 PM |
|
| FTP Server v1.0.1.6 |
- Server settings have been moved from registry to the XML file, which will be
located in the common application data directory. 64 bit versions of Windows were
having trouble writing into the registry; similar change
is coming to the mail server;
- If used, XML files (Users.XML, Groups.XML and ServerOptions.XML) will also be moved
to the common application data directory;
| | 11/8/2008 11:41:29 PM |
|
| FTP Server v1.0.1.5 |
- When performing active data transfers on systems with multiple IP addresses, data
connections were using first available IP address, rather than one on which the control
connection was active. It was causing confusion with firewalls and routers;
| | 11/2/2008 9:39:24 PM |
|
| Web Mail Hosting | I am considering to start web mail hosting service for ArGoSoft Mail Server .NET: mail server will be installed on your computer, while the web interface - on ours. It will save the hassle with setting up the web interface, and keep updating it.
Please vote here wheter you are interested in such a service.
| | 10/23/2008 11:07:28 AM |
|
| ArGoSoft Mail Server .NET v1.0.5.7 | |
Mail Server
- Added Bounced Messages under Options, allowing users to customize
bounced and warning messages. This feature was present in the Pro version,
but was missing in the .NET;
- Now it is possible to set a daily limit for each user for sending mail out (see Max Rcpt To...
option when editing users);
- Each session can have a limit of RCPT TO commands Options - Server Settings - General
. This feature was present in the Pro version, but was missing in the .NET.
- Now allowing to specify the lifetime for remoting validation token, can be useful to extend the
length of web interface sessions (Options - Server Options - Advanced);
Web Interface
-
Fixed Unable to Find Users Path... exceptions problem when accessing users for very first time;
-
Updated to allow the domain group administrator to update Max Rcpt To commands (see above);
| | 10/22/2008 5:45:26 PM |
|
|
|
|
|
 |
 |
|
 |
|