At this point we would like to make a few recommendations for handling passwords:
- Keep your password as secret as possible. Never write down a password. Popular but completely unsuitable are, for example: Notebooks, wallets and text files on the computer. It sounds trivial, but it cannot be repeated often enough: Do not share your password with anybody else. Even the securest systems are defenseless against talkativeness.
- Communicate passwords securely. Once set, a password must be communicated to the remote site. Choose the most secure method possible. Avoid using: Unencrypted e-mail, letter, fax. It is better to communicate personally and face to face. The highest level of security is achieved when you enter the password personally at both ends.
- Choose a secure password.
Use random sequences of letters and numbers. Passwords that are normal words are not secure. Special characters such as '&"?-*_:;,!°' make it even more difficult for attackers to guess your password, which is a plus for your security.
Important: The password for the configuration is case sensitive.
- Never use a password twice. Using the same password for multiple purposes makes it less secure. If a remote site is compromised, the other connections that use this password are endangered all at once.
- If you suspect anything, change the password immediately. When an employee with access to a password leaves the company, then it is high time to change that password. If you have even the slightest suspicion of a leak, change the password.
If you follow these simple rules, you will achieve a high level of security.
