I have to admit that was good time. Thanks Dustin and Allen. Everyone else, you guys missed your chance to get an autographed seagull hat and see me strum the mandolin with the band.
Maybe next time!
It was a fun night for sure.
Dustin ________________________________ From: USHE-ISO ushe-iso-bounces@lists.dixie.edu on behalf of Eric Bennick via USHE-ISO ushe-iso@lists.dixie.edu Sent: Thursday, March 21, 2024 12:26 AM To: ushe-iso@lists.dixie.edu ushe-iso@lists.dixie.edu Subject: [USHE-ISO] Seagull hat
I have to admit that was good time. Thanks Dustin and Allen. Everyone else, you guys missed your chance to get an autographed seagull hat and see me strum the mandolin with the band.
Maybe next time!
Can I get a quick poll on what the minimum length everyone is requiring for students?
And possibly if anyone has considered going “passwordless?”
James Wilkinson | SLCC
We're going with 15 chars (3 of 4 - upper/lower/digit/special) and some restrictions on certain words (mascot, dixie, spring, fall, etc) and including your own name in your password.
Dropped any requirement to change on a regular basis after going up to 15 characters for length. Password changes are now event driven rather than time driven.
Thanks, Andrew ________________________________ From: USHE-ISO ushe-iso-bounces@lists.dixie.edu on behalf of James Wilkinson via USHE-ISO ushe-iso@lists.dixie.edu Sent: Wednesday, April 3, 2024 11:11 AM To: ushe-iso@lists.dixie.edu ushe-iso@lists.dixie.edu Subject: [USHE-ISO] Password Length Poll
Can I get a quick poll on what the minimum length everyone is requiring for students?
And possibly if anyone has considered going “passwordless?”
James Wilkinson | SLCC
We're going with length over complexity requiring at least 18 characters: https://my.suu.edu/help/article/1357/password-requirements/
We haven't gone down the passwordless path yet.
-- Jeremy Martin | SUU
On Wed, Apr 3, 2024 at 2:59 PM Andrew Goble via USHE-ISO < ushe-iso@lists.dixie.edu> wrote:
We're going with 15 chars (3 of 4 - upper/lower/digit/special) and some restrictions on certain words (mascot, dixie, spring, fall, etc) and including your own name in your password. Dropped any requirement to change on a regular basis after
We're going with 15 chars (3 of 4 - upper/lower/digit/special) and some restrictions on certain words (mascot, dixie, spring, fall, etc) and including your own name in your password.
Dropped any requirement to change on a regular basis after going up to 15 characters for length. Password changes are now event driven rather than time driven.
Thanks, Andrew
*From:* USHE-ISO ushe-iso-bounces@lists.dixie.edu on behalf of James Wilkinson via USHE-ISO ushe-iso@lists.dixie.edu *Sent:* Wednesday, April 3, 2024 11:11 AM *To:* ushe-iso@lists.dixie.edu ushe-iso@lists.dixie.edu *Subject:* [USHE-ISO] Password Length Poll
Can I get a quick poll on what the minimum length everyone is requiring for students?
And possibly if anyone has considered going “passwordless?”
James Wilkinson | SLCC
-- USHE-ISO mailing list USHE-ISO@lists.dixie.edu
https://urldefense.com/v3/__http://lists.dixie.edu/cgi-bin/mailman/listinfo/...
We require 16 characters, and we hash check all passwords against the haveIbeenpawnd database. We removed the regular expressions with normalization and fuzzy logic because almost all of the password combinations already exist in the database. We had lots of complaints about the difficulty in picking a password, so we also created a mechanism which explains why a password fails validation.
We haven't looked at full passwordless authentication, and we use risk based authentication for MFA prompts.
On Wed, Apr 3, 2024 at 11:11 AM James Wilkinson via USHE-ISO < ushe-iso@lists.dixie.edu> wrote:
Can I get a quick poll on what the minimum length everyone is requiring for students?
And possibly if anyone has considered going “passwordless?”
James Wilkinson | SLCC
-- USHE-ISO mailing list USHE-ISO@lists.dixie.edu http://lists.dixie.edu/cgi-bin/mailman/listinfo/ushe-iso
participants (5)
-
Andrew Goble -
Dustin Udy -
Eric Bennick -
James Wilkinson -
Jeremy Martin