You can use a dll to do additional security checks on a domain controller base. ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		asimops on June 2, 2019 \| parent \| context \| favorite \| on: Password expiration is dead, long live passwords You can use a dll to do additional security checks on a domain controller base. Check this https://github.com/JacksonVD/PwnedPasswordsDLL-API

discreditable on June 3, 2019 [–]

The problem is the password change UI on Windows systems is terrible. It does not give users any clue why their password was not accepted other than "Unable to update the password. The value provided does not meet the length, complexity, or history requirements of the domain."

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact