Creating Strong Passwords
The following rules for stronger passwords are currently enforced for Parnassus, Homer Admin and e-mail, but are recommended for all other systems as well. The password rules are as follows:
- Must be at least 8 characters, but not more than 16 characters (16-character maximum only applies to Netpass)
- Must consist of a combination of letters, numbers and one or more of these special characters: ! (exclamation point), % (percent sign), * (asterisk), + (plus sign), -(dash or minus sign), ? (question mark), _ (underscore)
- Cannot contain the user name for that system
- Cannot be a password that has been used within the last 18 months
Create Strong Passwords that are easy to remember by using the first letter of each word in a sentence. Choose a sentence with some capitalized proper nouns, at least one number, and some punctuation, for example:
Example sentence: '17 will be Ithaca's year at Cortaca Jug!
Although common, character replacement is actually pretty weak for password creation:
In this method, one or more letters is replaced with a similar looking number and special character. For example, Apple becomes 4pp!e, Gleam becomes 6!eam, or razzle becomes ra22!e. Please see this link for more information: http://optimwise.com/passwords-with-simple-character-substitution-are-weak/
Keep your passwords safe:
- DO NOT share passwords with co-workers, friends, or relatives.
- DO NOT write passwords on a sticky note, notepad, or anything stored in or around monitors or desks.
- DO NOT store passwords in unencrypted or plain text files on a computer DO NOT let others watch a password as it is typed.