OL 8 user account passwords must be configured so that existing passwords are restricted to a 60-day maximum lifetime.

Any password, no matter how complex, can eventually be cracked. Therefore, passwords need to be changed periodically. If OL 8 does not limit the lifetime of passwords and force users to change their passwords, there is the risk that OL 8 passwords could be compromised.