"Kurt D. Zeilenga" wrote: > At 08:12 PM 10/27/99 -0600, Jim Sermersheim wrote: > >What do you think? > > I concur that the password policy should be divorced from the > password storage. It's my view that, like RFC2251, the password > policy should not place any restrictions upon how servers store > credentials. > > As far as the pwdHistory attribute type, I would suggest avoid > defining it. That is, the policy needed concern it self with > how a server records the history to enforce the policy. It > just needs to enforce the policy. Agreed. The policy should say if "pwdHistory" in on or off to tell the server to keep a history or not. /prasanta > > > Kurt > > ---- > Kurt D. Zeilenga <kurt@boolean.net> > Net Boolean Incorporated <http://www.boolean.net/>
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature