Gregory's Server
@DaCool I was actually thinking about the PIN rules for our MDM when I thought of the faces joke. We have a similar rule—a six-digit PIN is required, but you can't have three or more consecutive ascending or descending digits. (And not just sequential—"981" would trip the rule.)
No, despite how often I invoke the hashtag, I am not an #infosec professional, but: if you are constrained to a universe of only a million possible PINs, why eliminate tens (hundreds?) of thousands of possibilities?
@maxleibman When people busy themselves writing "guidelines" instead of, gee, making this stuff secure and convenient on a factual basis.
<Insert Password XKCD here>
My workplaces larger overlord org still uses the abysmal "Use a new password every X months" rule despite all IT's petitions and recommendations of MS and standardisation bodies against it.
Ticking checkboxes instead of making an actual effort always rubs me wrong.