Jump to content
OpenSecurity.global
  • Recently Browsing   0 members

    No registered users viewing this page.

Sign in to follow this  
John Carroll

Self serving passphrase/password improvement (Passfilt.dll)

Recommended Posts

Has anyone here looked at this approach to improving password length?

I've looked into getting large user bases to create longer passphrase and from what I can see there are options that if you're in a defined group, you get to have X password policy

What I'm hoping for is for a password to be taken, assessed on it's 'satisfaction' criteria then based on that outcome given a group to be in. 

new password is: DR0w55ap!  (password is upper/lower/special char, less than 10 characters, it's going in the basic password policy decision, less time between password renewal enforcement   

new password is: KingsOfLeonAreSuperAnnoying (password is greater than 25 chars (+ other things*) it's going in the long passphrase policy decision = more time between password renewal enforcement   

I've been told to take a look at passfilt.dll, does anyone have any first hand experience with this ? 

I really like this idea, and I think it's a good ramp to getting people busting out longer passwords/passphrases 

 

https://docs.microsoft.com/en-us/windows/win32/secmgmt/management-functions what it isn't clear on is if you can have more than one policy that can be conditionally applied based on user provided  - maybe it can't, but it would be ace if it could, does anyone know any MS nerds that might be worth talking too ?

Share this post


Link to post

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

  • Members online now

    No members to show

×
×
  • Create New...

Important Information

We use cookies as we're cookie monsters. Privacy Policy