Forum Search:
Forum.Brain-Cluster.com: Brain Cluster Technical Forum
Ultimate forum for Technical Discussions

Home » Microsoft » Windows Server » Active Directory » Password lists
Password lists [message #399404] Wed, 24 February 2010 19:42 Go to next message
MSNews  is currently offline MSNews  United States
Messages: 135
Registered: September 2009
Senior Member
I came into an office of about 40 users where they keep all passwords in an
xlsx. I had never kept passwords before- never needed to- . Is this a
common practice?

-- Carly
Re: Password lists [message #399462 is a reply to message #399404] Wed, 24 February 2010 23:19 Go to previous messageGo to next message
meiweb  is currently offline meiweb  Germany
Messages: 2225
Registered: September 2009
Senior Member
Hello News,

Hopefully not, as then you can forget the reason of a password.

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


> I came into an office of about 40 users where they keep all passwords
> in an xlsx. I had never kept passwords before- never needed to- .
> Is this a common practice?
>
Re: Password lists [message #399665 is a reply to message #399404] Thu, 25 February 2010 08:12 Go to previous message
Phillip Windell  is currently offline Phillip Windell  United States
Messages: 526
Registered: July 2009
Senior Member
"News" <nf@no.com> wrote in message
news:uNI7vQctKHA.5940@TK2MSFTNGP02.phx.gbl...
>I came into an office of about 40 users where they keep all passwords in an
>xlsx. I had never kept passwords before- never needed to- . Is this a
>common practice?

Common practice?? Depends on who you ask. It does not matter if it is
common or not common. Stupid practices are also "common",...so common does
not make it right, proper, or good.

Good idea? No! Except for Administrator Accounts and other non-human
accounts,...you should keep a record of those that is heaily secured and
locked away.

Why? Legal reasons,...a user cannot be legally blamed for anything done
under their account because a list exists and anyone who could have got a
hold of the list could have used the person's credentials to "frame" them.
That is what the lawyers will do with it anyway. In court you do not have to
prove innocents,...you only have to show reasonable doubt,...at least in the
US anyway.

If the list is not kept,...then the user is the only one that knows their
own password,...so no one else could look it up anywhere,...hence the user
is responsible for whatever happens under their own account. If the user
told anyone their credentials or wrote it down somewhere that others could
see it,...then it is still the users fault and they are still to blame.


--
Phillip Windell

The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
Previous Topic:Re: Creating Static Routes with DHCP
Next Topic:AD replication issue!!!
Goto Forum:
  


Current Time: Tue Jan 23 16:19:06 MST 2018

Total time taken to generate the page: 0.40926 seconds
.:: Contact :: Home ::Sitemap::.

Powered by: FUDforum 3.0.0RC2.
Copyright ©2001-2009 FUDforum Bulletin Board Software