Re: Password security?
Before enforcing a regular password change policy, one would have to convince me it's efficient.
First, most of the time a regular password change just implies a digit change.
Next, changing regularly passwords leads users to write them somewhere, something that should be radically forbidden.
I don't think I'm the only one to believe this: