Message-ID: <8352223.1075840996491.JavaMail.evans@thyme> Date: Fri, 16 Mar 2001 02:12:00 -0800 (PST) From: craig.schneider@enron.com To: 40enron@enron.com Subject: RE: Password Security Notice Mime-Version: 1.0 Content-Type: text/plain; charset=ANSI_X3.4-1968 Content-Transfer-Encoding: quoted-printable X-From: Craig Schneider X-To: "IT Security & Controls@ENRON" <IMCEANOTES-IT+20Security+20+26+20Controls+40ENRON@ENRON.com>@SMTP@enronXgate, Enron Authenticated Corp Users@ENRON X-cc: X-bcc: X-Folder: \eric linder 6-28-02\Notes Folders\All documents X-Origin: LINDER-E X-FileName: eric linder 6-28-02.nsf Did you read this? This is stupid! The only way that you will be able to= =20 remember your password under these guidlines is to write it down. I am sur= e=20 there is NO security risk about leaving passwords on a sticky note slapped = on=20 your monitor. -----Original Message----- From: Enron Announcements/Corp/Enron@ENRON=20 [mailto:IMCEANOTES-Enron+20Announcements_Corp_Enron+40ENRON@ENRON.com] On= =20 Behalf Of IT Security & Controls@ENRON Sent: Thursday, March 08, 2001 4:42 PM To: Enron Authenticated Corp Users@ENRON Subject: Password Security Notice For Password Renewals Only=20 IT Security & Controls =01) Password Security Notice =20 Passwords The key to maintaining information and system security is the use of=20 well-selected and guarded passwords. Because your password is our first li= ne=20 of defense, stronger password selection criteria will soon be implemented f= or=20 all employees. =20 Password Policy Passwords=01( 1. must be at least of eight characters in length.=20 2. must not contain names, userids, common English dictionary words, and=20 begin or end with a number. 3. must contain alphanumeric characters and contain at least one special=20 character. No more than fifty percent of the overall password can be in=20 English. 4. must not be reused or cyclical.=20 5. must be changed every 60 days. 6. must not be publicly displayed. 7. must not be shared with other users. =20 Choosing a good password comes down to two things. First, avoid common=20 everyday words a potential hacker=01,s software will be looking for. Secon= d,=20 keep your password simple enough that you can remember it without having t= o=20 write it down.=20 Please keep in mind that the Enron Code of Ethics holds employees responsib= le=20 for password security. IT Security & Controls conducts periodic audits to= =20 ensure compliance with company policy.=20 http://itc.corp.enron.com/data/policiesandprocedures/ITPasswordScreenSaver/ For any problems encountered concerning password controls, please call your= =20 appropriate Resolution Center (available: 24Hrs./day, 7 days/week).