How about also keeping the last 12 passwords and change dates. Also a check to ensure there are no duplicate passwords. This would allow those of us that have to prove password changes that we have done so.
Log in to post a comment.