c********t
发帖数: 19 | 1 Thank you, coconut, for always answering my questions!!
One more security related questions here and happy new year to you!!
If there is a financial application sit on UNIX (UNIX has all the necessary
password complexity, lockout...), but the application can only set the lock
out (lock out after 3 times of failure attempts. It can not enforce password
complexity because of the application limitation). Is it a big deal?
I mean is it easy for people who knows other's UNIX password to get into
that | c*****t
发帖数: 1879 | 2 That's pretty strong security, as long as the user is not using
some trivial passwords.
As always, one concern is that an user uses the same password
on other machines that can be easily cracked, but that's not
something in control of this specific application.
There is, however, a downside to this. Because of the lock
feature, that means one need to ask to reset the password
if one makes mistake. Thus can cause some annoyances. If
one does not use it frequently, or picks a relatively difficu
【在 c********t 的大作中提到】
: Thank you, coconut, for always answering my questions!!
: One more security related questions here and happy new year to you!!
: If there is a financial application sit on UNIX (UNIX has all the necessary
: password complexity, lockout...), but the application can only set the lock
: out (lock out after 3 times of failure attempts. It can not enforce password
: complexity because of the application limitation). Is it a big deal?
: I mean is it easy for people who knows other's UNIX password to get into
: that
|
|
