How do you make the safest password for your e-mail?

Question

I always couldn't make a very safe password that's easy to remember.

Answer 1

A password and username work together as a "key" to a computer system providing specific access for a given user. Access to confidential information, whether coursework, administrative data, or e-mail, is protected by the password/username pair. Thus, it is one of the most critical elements of system and data security. All of the efforts of system administration staff are useless if passwords aren't protected properly. A large number of security problems at Drew stem from improper protection of passwords and computer accounts. How to select a good password, and keep it secure
Passwords are initially created as random numbers for most Drew systems. The password must be changed immediately on the first access. After that, you and only you should know that password.

* Don't write your password down, especially in a place that someone might look for it (inside a desk drawer, under a phone or keyboard, next to the monitor, on a desk leaf, in a wallet, etc.) Commit your password to memory as soon as possible. If you must write a password down, keep it in a sealed envelope in a secure location, and change it when the envelope is opened. Never send a password in email.
* Don't share your account password with anyone, regardless of how well you think you know them. A user account is a privilege granted to a specific person, and sharing that account is a violation of University policy. Even if they're your best friend, your one true love, they are not entitled to use your account. Besides, sometimes even the best relationships turn sour, and then you don't want your new enemy to be able to send email out in your name.
* Never divulge your password to people who purport to be system management or technical personnel. Real system managers don't need your password--the system grants them access from their own account, and will track access as them for all critical activities. If your password doesn't work for some reason, they do not need the old password to change it. Anyone telling you they need your password for any reason is lying. Never tell your password to any technical staff. If Aide Station employees or network support staff need to log in to your account, they will do it in your presence and ask you to type in your password when it is needed. You should never leave a person using your logged-in account unattended.
* DON'T GIVE YOUR PASSWORD TO ANYONE.
2) Make your password easy to remember, but hard to guess or determine by "brute force."

Many Drew systems prevent passwords of simple English words. Even if they don't, you should avoid using such words. Common system attacks involve going through standard dictionary words as passwords. You should also avoid passwords having anything to do with you, like your name, birthday, address, Social Security number, pet's or partner's name, shoe size, basically anything about you that is potentially public knowledge. Avoid these in both forward and reverse order. Avoid sample passwords you've seen in any book or movie. Avoid passwords that are all letters, or only all numbers--such passwords are much easier to have a program guess by trying all possible combinations of such things.

So, what are you left with? The kinds of things that make good passwords are things that have no obvious pattern or no contiguous words. Breaking up words with numeric digits or punctuation is very helpful. Abbreviations of long phrases can also be useful. It is important to select something that can be remembered nmenonically, yet when typed seems to be complete gibberish.

3) Change your password often.

So, you do 1) and 2) above, so why should you need to change your password. It's secure, right?
Not exactly. Despite everyone's best efforts, passwords can still be gotten:


* If you dial in on a phone line or login over the Internet, the password data passes through numerous public networks. There have been reports of people compromising network machines and stealing username/password combinations to systems by monitoring signals on communication lines, and thus gaining access. Even if passwords are encrypted, clever criminals can sometimes replay the encrypted sequence.
* If you type a password with other people in the room, they may be able to watch your keystrokes. It's the same as people at pay phones using calling cards and unscrupulous people stealing the card number by watching people key it in. (It's proper etiquette to look away from the keyboard or screen while someone is typing in their password.) If you suspect someone has seen you type in your password, change it immediately.
* It's possible that systems or software you use (mail packages, Web pages, etc.) will store your password in an unencrypted format, or in a format known not to be secure. If this is true, and the system is compromised, those passwords will be made available to the infiltrator.

4) Use different passwords for unrelated systems.

If someone gains access to a computer system, and gets your password, it is then available for their use. If all of your computer accounts use the same password, then they've gained access to all of your computer accounts. While it is easier to remember just one password, it's far more dangerous. Your passwords don't have to be completely different, they can be related, but they shouldn't be identical (or simple permutations like password1, password2, etc.) Having the same password on multiple computer systems means that all of your computer accounts are as secure as the least secure of the systems on which you have accounts. While Drew's servers store passwords in a very secure format that cannot practically be decoded, other sites may simply store passwords in plain text. This means that not only is the password compromised if the remote system is broken in to, but that the administrators of that system can see all the passwords. This especially is an issue with passwords you use for Web access to services--these should be completely different than Drew passwords, or passwords to any data you trust. Use harder-to-guess passwords for your more critical accounts.

You now have the same password for the LAN, email, roaming access, the proxy server, and Session Manager enabled websites. Although this may seem to be a contradiction of the above rule, the difference is that all of these systems will be managed under a common security policy, and passwords will be stored in one database on the network. This model is secure when managed properly and administered by a central organization.

5) Is this all really necessary?

You might say, "Well, I don't really have anything important on the network, so why should I care about my password?" Even though you don't have sensitive data in your own account, the fact that you have an account on the Drew network means that you are given rights to other files that are confidential to Drew, such as course materials or administrative information. If you're faculty or staff you have shared network space that is writable by you, and that data is very important to others in your department. If your account is compromised, it may be used as a stepping stone to accessing other Drew files or systems, or possibly as a way to attack other systems on the Internet. While these suggestions may seem like paranoia, they are critical in the interconnected, shared Internet to keep not only you but the University safe from unauthorized access.

Answer 2

You are totally wrong,the easy to remember password don t mean s the password is protected.Get a usb pen drive and open a new text file on it,there you can save all your passwords,after that just remove the pen drive from your pc.Always generate your passwords with passfocplace.com password generator tool,and save the password in the text file with copy paste methode.On that way ,you are secured against keyloggers.

Answer 3

The best way to make safest password is to mix the password with small, large alphabets and numbers. Example WeRXt720

Answer 4

This is a affordable web trick utilized by many individuals to get the password of electronic mail identity-s of a man or woman you must in no way reply questions like this as those electronic mail ids aren't of the e-mail vendors(gmail,yahoo) however of participants

Answer 5

Use some RANDOM letters, numbers, or both, and keep in mind that if it is easy for you to remember (DOB, SSN, Pet Name) then it is easy for someone else to.

If you are at a total loss use a credit card or bank account number.

Always change your password every 6 months or 10,000 uses.

Answer 6

You should do a long one no one will figure out
so you should get your b-day like this 12 23 01 but all together like this122301 then u get the end of a phone number like this 4874 then you put it all together like this ad then u have a password

1223014874

Answer 7

Better try to create a password with ur most rememberred name along with some numbers that u remember atmost

Answer 8

The good password consists of letters (both small and capital) numbers, and symbols.

One easy way to remember easier is to use symbols instead of letters (eg. $ instead of S ) , and to mix familiar number with the word (eg. a1b2c3 )

Answer 9

Minimum of 8 characters, more the better, At least one uppercase letter, one lowercase letter, one number and one special character like a . or a !


Passwords like that could take milleniums to decrypt with modern PCs and software

Answer 10

Start with an uppercase if allowed. Used both letter and numbers. Never make it anything obvious about yourself like birthdates or anything like that. If allowed, use special characters.

Answer 11

Use an easily remembered word, spelled backwards.