Don’t change passwords so often

http://www.wired.com/2016/03/want-safer-passwords-dont-change-often/

I’m not asking you to take my word for it. In fact, don’t listen to me at all. Listen to science.

Anyway, yes, we know. There’s not a lot we can do about it though, thanks to silly PCI requirements and auditor requirements. They literally fail you if you *don’t* enforce a password change mechanism.

*sigh*

Via corenominal, who you should probably follow