Announcement

Collapse
No announcement yet.

Keeping Passwords Secure

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Keeping Passwords Secure

    As the web has evolved, so have the methods of collecting personal information. A large number of websites require visitors to register to gain access or participate.

    While the need for registration is understandable, tracking user names and passwords can be burdensome. Consider using software to store your passwords, in a safe accessible manner.

    Most websites have privacy policies, but the value of privacy statements are only as honorable as the people behind the websites. Here are suggestions for keeping passwords and your information secure:


    change your password frequently

    never share your password with anyone

    try to choose a password so it doesn't need to be written down, but not so obvious others would easily guess the password

    be sure your password is at least 6 characters

    don't use a password containing all the same characters

    don't send your password via email or provide it over the phone

    don't use pet, family or friend names

    don't use your telephone number, zip code or address

    use a different password for each account

    don't use user name

    deactivate accounts for terminated employees

    don't allow shared accounts

    password contains upper, lowercase letters, non-letter characters and numbers

    A passphrase can assist in remembering passwords.

    I1ik3t0h31P - > IliketohelP -> The first and last characters are UpperCase

    Swapping characters butt be sure you memorize them

    l=1
    e=3
    o=0
    etc etc

    Remove the old postit-note from the side of the monitor. How many of those have the password written on them.

    Passwords are not foolproof. Do not rely on a password alone to protect sensitive information. Monitor accounts closely to ensure that security is not breached.
    MCSE w2k
    MCSA w2k - MCSA w2k MESSAGING
    MCDBA SQL2k

  • #2
    Great tip. Thanks.

    Cheers,

    Daniel Petri
    Microsoft Most Valuable Professional - Active Directory Directory Services
    MCSA/E, MCTS, MCITP, MCT

    Comment


    • #3
      also: a password don't need to be a Word.
      it can also be an sentince..

      most important of all: make you're users security aware.
      i've founded somewhere a document from microsoft (cant find it right know, but i've got it on CD)

      if i've time, i will place it here.
      Marcel
      Technical Consultant
      Netherlands
      http://www.phetios.com
      http://blog.nessus.nl

      MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
      "No matter how secure, there is always the human factor."

      "Enjoy life today, tomorrow may never come."
      "If you're going through hell, keep going. ~Winston Churchill"

      Comment

      Working...
      X