Project Talk:Infrastructure/Password policy
From Gentoo Wiki
Note
This is a Talk page - please see the documentation about using talk pages. Add newer comments below older ones, sign comments using four tildes (
This is a Talk page - please see the documentation about using talk pages. Add newer comments below older ones, sign comments using four tildes (
~~~~
), and indent successive comments with colons (:
).
Add new sections at the bottom of the page, under a heading (== ==
). Please remember to mark sections as "open for discussion" using {{talk|open}}
, so they will show up in the list of open discussions.
Talk status
This discussion is still ongoing.
I think we need to decide on a couple of things:
- Advice on generating the master password. I'm generally good with the xkcd advice; but I've also had success using longer computer generated passwords. My ability to remember a password is primarily related to use-rate.
- Advice on rotating passwords. I'd explicitly avoid rotating the master password outside of a breach.
— The preceding unsigned comment was added by Antarus (talk • contribs)
- We should avoid rotating passwords https://www.wired.com/2016/03/want-safer-passwords-dont-change-often/ --Jonas Stein (talk) 23:51, 13 October 2018 (UTC)