by Stephanie Kitts
Daily Lobo
ITS made two changes last week that affect nearly everyone at UNM, said Danny Lee, an ITS Technical Support Analyst.
The first change requires users of UNM Web sites that use NetIDs and passwords, such as LoboWeb, to change their password every six months, he said.
The second change was the creation of the challenge-response system, which lets users reset their password by answering a set of questions, he said.
Get content from The Daily Lobo delivered to your inbox
ITS made the changes to protect the personal information of students, faculty and staff, said Jane McGuire, spokeswoman for the department.
"We feel that appropriately securing information is of great value to the UNM community," she said. "This is one more step in that direction."
Reminder e-mails will be sent 30 days, 15 days, seven days and one day before a password expires, Lee said.
However, he said students shouldn't wait until the last minute.
"The best thing to do would be to change your password when the first reminder is received," he said.
The longer the same password is in use, the more likely it is that someone will find it and misuse it, Lee said.
He said passwords should be changed every 30 days, but most people don't like to change them that often.
"This time period was a compromise," he said. "We thought six months was probably a good limit for everyone."
Changing passwords used to be a difficult process for students and ITS, but it's not anymore, McGuire said.
"With the challenge-response capability, account owners can manage their own passwords with the confidence that they are using industry-standard password management practices," she said.
There are 10 questions, and students choose five of them to answer, Lee said.
He said the system allows students to reset their passwords from any computer with Internet access.
"If challenge-response is not set up, the password will have to be reset by the IT department," he said. "It's an inconvenience for students because they have to visit the IT center to reset their password. That's another good reason to set it up."
Student Murilo Moraes said the changes seem pointless.
"It's safer, but it doesn't seem useful or practical," he said.
Student Illeana Gomez said the changes are annoying but probably for the best.
"It would make it more secure, so I would feel more comfortable," she said. "I don't think that I'll have a big problem with it."
Passwords that were set up at the beginning of the semester will expire in February, and passwords on new accounts will expire 180 days after being set up.
The challenge-response system can be used at any time to reset passwords.
To enroll in the challenge-response system, enter your UNM NetID and password at Netid.unm.edu and choose five questions.
