F
fred_b
Guest
In the context of different security audit point, the auditors are always pointing the following shortcoming : "when accessing directly the Openedge database, a password is required to authenticate the user but no password policy applies (for example: password minimal lengths, password change date, password complexity, etc...)" As security is more and more important , it would be nice to implement a password policy management directly at openedge database level and not to delegate this security part to the application or LDAP ( Not always easy to implement)
Continue reading...
Continue reading...