I mean, that’s what lots of users do. My state requires that all state employees change their password every 90 days. This just means everyone has an incrementing number at the end of their password. Because the idiot users just write it on a fucking sticky note, which totally negates the idea of password changes.
Regular password changes haven’t been recommended procedure for several years now. The only problem it solves is preventing people from using the same password everywhere, but since everyone just sticks a number at the end anyways it doesn’t actually protect against that either
Exactly. The problem is that government policy is slow to change. So when the government has made it a required change every 90 days, that policy will stick around for decades even after the practice has fallen out of favor.
Every 3 months my company just increments the last digit.
I mean, that’s what lots of users do. My state requires that all state employees change their password every 90 days. This just means everyone has an incrementing number at the end of their password. Because the idiot users just write it on a fucking sticky note, which totally negates the idea of password changes.
Regular password changes haven’t been recommended procedure for several years now. The only problem it solves is preventing people from using the same password everywhere, but since everyone just sticks a number at the end anyways it doesn’t actually protect against that either
Exactly. The problem is that government policy is slow to change. So when the government has made it a required change every 90 days, that policy will stick around for decades even after the practice has fallen out of favor.