It might sound simplistic, but strong passwords are a must for good security. Strong passwords to your web, ftp, and data servers are the easiest first step toward a secure web presence.
What Makes A Strong Password?
· A three-character password is much weaker than a six or eight-character password. A good rule of thumb is never to use a password shorter than eight characters
· Never make a word found in a dictionary your password. One of the most common methods to break into systems is to run scripts that try to use dictionary words to guess your password. The less your password looks like a dictionary word, the less likely will someone guess what it is.
· In no way should you use the default password.
· Include numbers and special characters.
· Avoid repeated sequences, numbers or characters such as 12345678, bbbbbbbb, or 33333333
· Never use the user name, or any combination of it, as your password. Don’t use your domain name as your password either.
· Don’t use look alike substitutions like “4ufromme”, or n0t@home”
· Use the entire keyboard, and try to use the less common keys
· Never, ever use a blank password.
· Use different passwords for different accounts. You may find multiple of your accounts compromised simultaneously if you use the same password for all of your accounts.
Examples of strong passwords are:
A combination of several words that aren’t themselves a word interspersed with special characters (e.g.,! 4scOrE & sDayNYeaRs_ag0).
· Never make a word found in a dictionary your password. One of the most common methods to break into systems is to run scripts that try to use dictionary words to guess your password. If someone has to use one of your accounts, log them in instead of sharing your password.
It might sound simplistic, but strong passwords are a must for good security. Strong passwords to your web, ftp, and data servers are the easiest first step toward a secure web presence.
A word with digits of a memorable date sprinkled inside it (e.g., vacation -> 0vac2a0t9io19ln99).
If someone has to use one of your accounts, log them in instead of sharing your password. Don’t give out your password over the phone unless you have initiated the phone call. Ask for their phone number, call them back, then give out your password.
Avoid typing your password on public computers. Many public computers have been compromised, making their users vulnerable for malicious keystroke logging scripts.
Ideally, you would never write down your passwords, but it is becoming difficult to do with so many accounts. If you have to write them down, keep them locked in a safe or some other secure environment.
Keep Your Passwords Safe.
Change your passwords regularly. A new password every 45 days is a good practice. Having the same passwords for years is a weak security practice.