this post was submitted on 20 Aug 2024
592 points (98.8% liked)

Cybersecurity - Memes

1963 readers
1 users here now

Only the hottest memes in Cybersecurity

founded 1 year ago
MODERATORS
592
submitted 2 months ago* (last edited 2 months ago) by cron to c/cybersecuritymemes@lemmy.world
 

This practice is not recommended anymore, yet still found in many enterprises.

you are viewing a single comment's thread
view the rest of the comments
[–] fishpen0@lemmy.world 59 points 2 months ago* (last edited 2 months ago) (1 children)

Yes. It’s such a bad practice the fucking White House released an official memo (M-22-09) telling people to stop doing it as part of executive order EO-14028 (federal zero trust strategy). It applies as a rule to all government and military entities and therefore has been carved out in exceptions for FedRAMP and other compliance frameworks. Stop forcing people to change their fucking passwords.

https://www.whitehouse.gov/wp-content/uploads/2022/01/M-22-09.pdf