Community Comments & Feedback to Security Absurdity Article

Community Comments & Feedback to Security Absurdity Article: "For example, how often have you heard Security Professionals advise that users should change their passwords every few months? This 'best-practice' is based on recommendations made 30 years ago regarding non-networked mainframes in a DoD environment! It is completely outdated by today's technology and changing passwords every few months has little impact on improving security."

True indeed and Bruce Schneier commented on the same here:


Security Myths

One really strong password (even for everything) that can be remembered is better than rotating them.