Evolve Your Communications With 3CX Phone System
10 Password Commandments
Ten rules for crafting and managing strong passwords that might be a pain but will save you a lot of aggravation later.
If you are not currently taking precautions on passwords Contact us now so we can see how we can help.
10 Password Commandments
Don't write it down.
Never EVER EVER write it down. Either it will be so easy to find that having a password might be completely irrelevant or you are going to forget where you put it and somebody else will find it and use it to access your system. That sticky note inside your top right desk drawer is not safe, it is the first place someone will look.
Devise a password-creating system that's all yours.
There are hundreds even thousands of places on the internet that offer advice on how to create a strong passwords. But guess what? These are the first places that hackers go looking for tips on cracking passwords. Come up with your own system. It's not difficult and you can combine a variety of methods like reversing an inactive phone number from your past. Or take a nursery rhyme and turn it into a password "Hickory dickory dock! The mouse went up the clock!" and turn it into HDD!TMWUTC!
Don't send your password via e-mail or give it out over the phone.
OK, there are exceptions to this "rule," for instance, your help-desk or IT company are troubleshooting your system over the phone, but even in those cases, it's still might be a good idea to change your password.
Disable AutoComplete for user names and passwords.
Yes, this feature of Internet Explorer, Firefox, and other browsers is so awesome, but it also lets anyone who gets access to your PC to visit all the password protected sites in its database and they can then change the passwords, and even act in ways you may not appreciate. Disable this feature in your browser.
Change your password often.
Get into the habit of refreshing old passwords. The more important the data your password protects, the more often you should update it. One way to force yourself to change your Windows login password is by using the password options in Local Security Policy. Change your passwords on sensitive accounts every 30 to 60 days. (This can be annoying and some experts think it is not necessary if you have a good, strong password in place.)
Clear the cache after using a public PC.
If you log into a Web site from a PC that is not yours or is in a public place, make sure you clean out all traces of your use by deleting the browser's personal data. It is also good practice to change your passwords whenever you use a password in a public setting, even on your own laptop after attending a conference or other event, for example.
If it's too valuable to lose, don't keep it on your PC.
If you just discovered the secret to changing straw into gold, you may not want to save or trust this information on any hard drive, whether or not it's password-protected, or connected to a network at all. In addition to the threat of hackers and data-crackers, the drive could fail, which is leaving your fate in the hands of some data-recovery service. If you have to store a digital copy of some important file, place it on an optical disc designed specifically for archiving, and store that disc in a safe place, such as a bank deposit box.
DO NOT USE...
Your name, important dates, pet's name, company name, common dictionary words (summer, password, dog). Do not reuse password for any other login.
YOU SHOULD USE...
A Complex password with all four character sets (uppercase, lowercase, numeric and special). Use a password greater than 8 characters.
Do not use the same password or email account to access multiple sites.
For example, do not use the login credentials to access Facebook that you would use to access your online banking account.