Y
Hacker News
new
|
ask
|
show
|
jobs
by
tremon
1687 days ago
As to your last question, many organizations have a central password management system that lets them audit who uses which password and when. Having the passwords stored in a secondary system makes the audits useless.
2 comments
marwis
1686 days ago
Except when they don't have such central password management system yet still block them. Which is what I saw in most large organizations.
link
Nextgrid
1687 days ago
Anyone wanting to evade such audits can just write down the password somewhere else such as a piece of paper.
link