Microsoft computer security

Alberto Medina | 30 Sep 2010 19:17

Picon

Prevent users to use specifics words in Passwords


Hi all,
I'd like to know how to prevent users from use specifics words in their password in Windows Server 2003. In
the company users are required to change their password every 45 days, but some users use some words
related to the company or the business, there's a way to prevent this in Windows Server 2003? Some kind of
dictionary for words that can't be use?

Thank you and best regards,
Alberto Medina

Dean, James | 30 Sep 2010 21:19

RE: Prevent users to use specifics words in Passwords

See http://msdn.microsoft.com/en-us/library/ms721882(VS.85).aspx

-----Original Message-----
From: listbounce <at> securityfocus.com [mailto:listbounce <at> securityfocus.com]
On Behalf Of Alberto Medina
Sent: Thursday, September 30, 2010 12:18 PM
To: focus-ms <at> securityfocus.com
Cc: 'Alberto Medina'
Subject: Prevent users to use specifics words in Passwords

Hi all,
I'd like to know how to prevent users from use specifics words in their
password in Windows Server 2003. In the company users are required to
change their password every 45 days, but some users use some words
related to the company or the business, there's a way to prevent this in
Windows Server 2003? Some kind of dictionary for words that can't be
use?

Thank you and best regards,
Alberto Medina

Joshua E. Griffin | 30 Sep 2010 21:29

RE: Prevent users to use specifics words in Passwords

http://msdn.microsoft.com/en-us/library/bb259958%28BTS.70%29.aspx
Article on how to create the password filter.

-----Original Message-----
From: listbounce <at> securityfocus.com [mailto:listbounce <at> securityfocus.com] On Behalf Of Dean, James
Sent: Thursday, September 30, 2010 3:19 PM
To: Alberto Medina; focus-ms <at> securityfocus.com
Subject: RE: Prevent users to use specifics words in Passwords

See http://msdn.microsoft.com/en-us/library/ms721882(VS.85).aspx

-----Original Message-----
From: listbounce <at> securityfocus.com [mailto:listbounce <at> securityfocus.com]
On Behalf Of Alberto Medina
Sent: Thursday, September 30, 2010 12:18 PM
To: focus-ms <at> securityfocus.com
Cc: 'Alberto Medina'
Subject: Prevent users to use specifics words in Passwords

Hi all,
I'd like to know how to prevent users from use specifics words in their
password in Windows Server 2003. In the company users are required to
change their password every 45 days, but some users use some words
related to the company or the business, there's a way to prevent this in
Windows Server 2003? Some kind of dictionary for words that can't be
use?

Thank you and best regards,
Alberto Medina

(Continue reading)

Dean, James | 30 Sep 2010 21:48

RE: Prevent users to use specifics words in Passwords

Note that you don't need Enterprise Single Signon to program Windows
password filters.  They are just appropriately registered DLLs.

-----Original Message-----
From: Joshua E. Griffin [mailto:JEGriffin <at> rrmc.org] 
Sent: Thursday, September 30, 2010 2:29 PM
To: Dean, James; Alberto Medina; focus-ms <at> securityfocus.com
Subject: RE: Prevent users to use specifics words in Passwords

http://msdn.microsoft.com/en-us/library/bb259958%28BTS.70%29.aspx
Article on how to create the password filter.

Keplar, Lyonell | 30 Sep 2010 21:10

RE: Prevent users to use specifics words in Passwords

I work in a regulated industry where the default password complexity requirements provided with Windows
don't meet our regulatory requirements.  I've been using Anixis Password Policy Enforcer for several
years to build complex password requirements on Windows Active Directory domains, and it includes
excluding dictionary lists.

Limiting factor:  It doesn't work for local accounts or stand-alone systems, only AD domain accounts.

Thank you,

Lyonell D. Keplar
Senior Systems Administrator
Western Electricity Coordinating Council
work 360.713.9042 | cell 503.807.4805
lkeplar <at> wecc.biz

This email and any attachments may contain information that is privileged, confidential, or subject to
copyright.  This email is intended solely for the use of the person or persons to whom it is addressed. Any
dissemination, distribution, or copying of this communication in violation of any privilege,
confidentiality or copyright requirements is strictly prohibited. If you receive this email in error,
please notify the sender immediately by reply email or phone (360.713.9042) and permanently delete the
original, any copy of this email, and any printout.

-----Original Message-----
From: listbounce <at> securityfocus.com [mailto:listbounce <at> securityfocus.com] On Behalf Of Alberto Medina
Sent: Thursday, September 30, 2010 10:18 AM
To: focus-ms <at> securityfocus.com
Cc: 'Alberto Medina'
Subject: Prevent users to use specifics words in Passwords

Hi all,

(Continue reading)

Brad Bemis | 30 Sep 2010 21:20

RE: Prevent users to use specifics words in Passwords


Not natively - at least not specific to word usage.  However, if you enforce
password complexity as part of your group policy it may help...

Thank you for your time and attention,

Brad Bemis, CISSP, CISA
Information Security Professional
SecureITExpert | Seattle WA
===========================
PGP KeyID: 0xC89B8AA1 (.asc)
brad.bemis <at> secureitexpert.com 
http://www.secureitexpert.com      
http://twitter.com/SecureITExpert 
===========================
"Change is the Only Constant!"

-----Original Message-----
From: listbounce <at> securityfocus.com [mailto:listbounce <at> securityfocus.com] On
Behalf Of Alberto Medina
Sent: Thursday, September 30, 2010 10:18 AM
To: focus-ms <at> securityfocus.com
Cc: 'Alberto Medina'
Subject: Prevent users to use specifics words in Passwords

Hi all,
I'd like to know how to prevent users from use specifics words in their
password in Windows Server 2003. In the company users are required to change
their password every 45 days, but some users use some words related to the
company or the business, there's a way to prevent this in Windows Server

(Continue reading)

Cesare Balena | 30 Sep 2010 22:31

Picon

cipher suite on Windows 7

Hello,

accordlingly with the technet article there are possible issue if i'm going 
to enable the cipher suite on Windows 7

http://technet.microsoft.com/hu-hu/library/dd560670(WS.10).aspx

My question is : which is the possible issue once enabled on windows 7 ?

Thanks

Return

Return to gmane.comp.security.microsoft.

Search Archive

Language

Change language

Options

Current view: Threads only / Showing only 20 lines / Not hiding cited text.
Change to All messages, whole messages, or hide cited text.

Post a message
NNTP Newsgroup
Classic Gmane web interface
XML

XML

RSS Feed
List Information

About Gmane