[auton-users] Password Guidelines (Laws)

[Michael J. Baysek]

*PASSWORD GUIDELINES* (aka The Law)

Poor passwords are currently the greatest threat to life as we know it!  
Well, at least as far the security of lab resources are concerned.

One reason that password strength is so important, especially for us, is 
that the university publishes (over and over) our user names by default 
on their various websites.  If your Auton Lab user name is the same as 
your CMU user name, an attacker already has your valid user account.

Simply put, we work with too much sensitive data to afford using sub-par 
password strength.

Enlighten yourself and visit http://www.autonlab.org/pwcheck/ right now 
and run your existing passwords through the tool there.  Notice the 
different things that are updated in real time as you add features to 
your password.  If your password does not score at least 50% (ideally, 
higher) on the Score meter, consider another password immediately.

Additionally, using the same passwords that you use for other services 
(email, websites, etc) must be avoided.

Check your passwords with the tool above and change them [again] if you 
need to.  Don't skip this!  Security depends on all of us, and we should 
not rest until we all do our part.

-- 
Michael J. Baysek
Systems Analyst
Carnegie Mellon University / Auton Lab
412-268-8939 - mjbaysek at cs.cmu.edu
http://www.autonlab.org






-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.srv.cs.cmu.edu/mailman/private/autonlab-users/attachments/20110304/312975ff/attachment.html>