Use a login policy to control the frequency of password changes and to specify the number of login attempts allowed before an account is locked.

The default user ID and password for a newly created database is DBA and sql. You should change this password before deploying the database.

By default, passwords must be 3 bytes in length. For greater security, you can change the minimum length requirement on all new passwords to disallow short (and therefore easily guessed) passwords. You do this by setting the min_password_length database option to a value greater than zero. The following statement enforces passwords to be at least 8 bytes long.

SET OPTION PUBLIC.min_password_length = 8;

See min_password_length connection property.

By default, database passwords never expire. You can use a login policy to implement password expiry.

Passwords are the key to accessing databases. They should not be easily available to unauthorized people in a security-conscious environment.

When you create an ODBC data source or a Sybase Central connection profile, you can optionally include a password. Avoid including passwords to ensure that they are not viewed by unauthorized users.

When you create a configuration file, you can optionally include password information. To protect your passwords, consider hiding the contents of configuration files with simple encryption, using the File Hiding (dbfhide) utility.

You can use the verify_password_function option to specify a function that implements password rules.

• verify_password_function option
• Login policies
• CREATE LOGIN POLICY statement
• min_password_length option
• ODBC data sources
• File Hiding utility (dbfhide)