How should we set the password on the Internet to be relatively safe?

April 27, 2023

label:

Introduction: We are now in the Internet age, often log in to various websites, forums, emails, online banking, etc. These accesses often require account + password authentication, so we continue to register users, there are countless networks. Account and password. most

We are now in the Internet age, often log in to various websites, forums, emails, online banking, etc. These visits often require account + password authentication, so we are constantly registering users, there are countless online accounts and password. Most people are accustomed to using only one common network username, email address and password for easy memory. This is very dangerous. So, how should we set up the password on the Internet to be relatively safe?

In general, personal password security needs to follow a few simple requirements: use different passwords for different network systems, and use more secure passwords for important systems. Never use the same password for all systems. For those forums that log in occasionally, you can set a simple password; for important information, email, online banking, etc., you must set a complex password. Never set a forum, email, and bank account to the same password. The specific setup strategy is as follows:

Online passwords, how should we set up the diagram 1

1. Sort your favorite websites: big websites, small websites, important websites, ordinary websites.

1, the big website

Large websites are trustworthy and secure websites, such as hundreds of millions of portals (Tencent, Google, etc.). These websites are theoretically safe. Under normal circumstances, user passwords are not easy to leak and will be tied. To set the phone number function, there should be no more than ten such websites.

2, small website

Websites outside the big website are small websites, which are untrustworthy websites. The passwords stored on them may be leaked at any time, and the password may be leaked.

3. Important websites

Core websites related to network use, such as major e-mail, online banking, online payment, domain name management, etc. If such websites are hacked, they will cause personal asset loss or other related website services to be attacked, which will cause huge losses.

4. Ordinary website

Websites outside of important websites.

Personal password security policy

Second, classify their common passwords: weak password, medium password, strong password

1, weak password

The easiest to remember, and the default is a password that can be lost.

All kinds of small and medium-sized websites, forums, communities, personal websites, etc.

Reason: The security of these websites may not be very good. Some just store the password MD5, and some may store the password in plain text. It is easy for hackers to steal user passwords from these websites.

2, the password

Medium-strength password, 8 characters or more, has a certain ability to resist exhaustion.

Medium passwords are mainly used in domestic portals, large websites, portals, social networking sites, etc., but not in the main mailbox. The portal is best tied to the mobile number.

Reason: The security of the big website is good, and the possibility of being cracked is usually low. The password used in the big website should be stronger.

It should be noted that some portals (such as Sina, Sohu, etc.) provide Weibo and provide mail system. If the system establishes these mailboxes by default, it is recommended not to use these mailboxes anywhere. If you want to use email, it is best. Confirm that the mailbox has an independent password feature.

One of the exceptions is Tencent Mailbox, Tencent Mailbox supports a separate password for the mailbox. After setting it up, the user needs to enter the QQ password and the email password before using it.

All game accounts use a separate password.

3, strong password

A strong password requires at least 8 characters or more, does not contain a user name, real name, or company name, and does not contain complete words, including letters, numbers, and special symbols.

Strong passwords are mainly used for mailboxes, online banking, payment systems, etc.

This kind of website is the most important and most important website. Online banking involves the security of users' property. Mailbox can reset all registered website passwords. Therefore, such websites must use strong passwords to ensure their absolute security.

Excessive passwords are very effective for simple passwords with a small length, but if the network user sets the password longer and has no obvious regular features (such as using special characters and alphanumeric combinations), then the cracking process of the exhaust crack tool It becomes very difficult, and crackers tend to lose patience for long periods of exhaustion. It is generally believed that the password should be longer than 8 digits. The password should preferably contain alphanumeric characters and symbols. Do not use a purely numeric password. Do not use a combination of common English words. Do not use your own name as a password. Do not use a birthday as a password.

Third, the use of e-mail specifications

1, the mailbox type

The number of personal mailboxes is not as good as possible. As long as two personal mailboxes (except the work mailbox), close those useless mailboxes, or clear all the contents, do not use the mailbox anywhere.

The mailbox is divided into two types, the main mailbox and the secondary mailbox. The important service is applied for by the main mailbox, and the general service is applied for by the secondary mailbox.

The main mailbox is recommended to be built with Gmail, bind the user's mobile phone, and set the mobile phone dynamic password for 2-step verification. At present, only the Gmail mailbox supports the mobile phone dynamic password in the world. After adding the mobile phone dynamic password, the hacker resets the user's Gmail password. The account cannot be logged in unless the user's phone is also stolen. With a dynamic password, once the user's mailbox is attacked, the user has enough time to repair the password through the phone.

Gmail's recovery email can be used or not, or the security of the secondary email must be high and not easily broken.

Another point of access to Gmail is that you don't use Hosts to access Gmail. Don't put accounts.google.com in the Hosts file, otherwise it will pose a great threat to the security of Gmail.

2, dynamic password settings

For Gmail users who are often attacked, it is highly recommended to use Gmail's "two-step verification" function. The specific method is to log in to Gmail, then access this address, and then install an iPhone or Android application according to the prompts to implement dynamic password. Greatly enhance the security of Gmail.

Gmail's "2-Step Verification" supports iPhone and Android phones, which are actually a type of dynamic password. Dynamic Password (Dynamic Password) is also called a one-time password. It means that the user's password changes continuously according to the time or number of uses. Each password is used only once. Since the password used each time must be generated by a dynamic token, and the password used by the user is different each time, it is difficult for the hacker to calculate the next dynamic password. However, dynamic passwords are more demanding on mobile phones and require smartphones such as iPhone or Android.

In addition to Gmail mailboxes, Tencent QQ mailbox is also a widely used mailbox in China. When using Tencent QQ mailbox, you must pay attention to it. Be sure to set a double password (mailbox separate password). If necessary, open Tencent's QQ mobile phone token, QQ mobile phone. Token is a QQ security software of Tencent. It protects QQ account, Q currency Q point and game equipment by verifying 30 seconds dynamic password. However, QQ mailbox does not support mobile phone token login.

Many people think that dynamic passwords are inconvenient and unwilling to use them. This is not right. Convenience is good, security is more important, and the management of user passwords is important. Although it adds a little inconvenience, you may avoid great losses.

3, the mailbox password

The password of the mailbox should never be the same as the password of any other website. You must use a strong password of 8 or more.

E-mail is the core and key in password management. The password reset function can be used to obtain the password of most users' websites. Therefore, once the e-mail password is hacked, the password system of the user will be out of control. Although the Gmail dynamic password seems to be troublesome, In fact, not every time you enter it, you can enter it again in 30 days on a single computer. QQ's mobile phone token can also be set up to reduce the number of times a dynamic password is entered.

Pay attention to the use of the mailbox, use the main mailbox and the secondary mailbox to register different websites, the important service uses the main mailbox to apply, and the general service uses the secondary mailbox to apply. Large websites use complex passwords, small websites and forums that use simple passwords. If the registered website is stolen, you need to reset your password by email as soon as possible.

10 In 1 Docking Station

Shenzhen Kingwire Electronics Co., Ltd. , https://www.kingwires.com