The first step is often creating a secure password. We all have far more passwords than we need. Strong passwords, despite their simplicity, are a prerequisite for effective security. The easiest first step towards a secure web presence is using strong passwords for your web, FTP, and data servers.
Ein starkes Passwort zeichnet sich durch folgende Merkmale aus: * **Länge:** Je länger, desto besser. Als Faustregel gilt, dass ein Passwort mindestens 12 Zeichen lang sein sollte, besser sind 16 oder mehr. * **Komplexität:** Eine Mischung aus Gross- und Kleinbuchstaben, Zahlen und Sonderzeichen (_!,?,@,#,$,%^,&,*,-,_,=,+,>,<,., etc.) macht es schwieriger zu erraten. * **Unvorhersehbarkeit:** Vermeiden Sie offensichtliche Wörter aus dem Wörterbuch, Namen, Geburtsdaten, alltägliche Sätze oder leicht zu erratende Muster (z.B. "123456", "Passwort1"). * **Einzigartigkeit:** Verwenden Sie für jeden Account ein anderes Passwort. Wenn ein Passwort kompromittiert wird, sind nicht sofort alle Ihre anderen Konten gefährdet. * **Geheimhaltung:** Geben Sie Ihr Passwort nicht weiter und speichern Sie es nicht unverschlüsselt an einem leicht zugänglichen Ort. **Zusätzliche Tipps für starke Passwörter:** * **Passphrase verwenden:** Kombinieren Sie mehrere zufällige Wörter zu einem Satz, der für Sie leicht zu merken ist, aber für andere schwer zu erraten ist. Beispiel: "DerHutIstRotUndTanztAufDerStrasse!". * **Passwort-Manager nutzen:** Ein Passwort-Manager kann Ihnen helfen, sichere und einzigartige Passwörter für all Ihre Konten zu generieren und sicher zu speichern. Sie müssen sich dann nur noch ein einziges starkes Master-Passwort für den Passwort-Manager merken. * **Zwei-Faktor-Authentifizierung (2FA) aktivieren:** Wo immer möglich, sollten Sie die Zwei-Faktor-Authentifizierung nutzen. Das bietet eine zusätzliche Sicherheitsebene, auch wenn Ihr Passwort einmal kompromittiert werden sollte.
– A three-digit password is far less secure than a six- or eight-digit one. As a rule of thumb: never use a password that is less than eight characters long.
– You must not use the default password.
– Never use a password that is a dictionary word. One of the most common ways to break into a system is by running scripts that try to guess your password using dictionary phrases. The less your password resembles a dictionary word, the less likely someone is to guess it.
– Include numbers and special characters in your message.
– Avoid repeating numbers, characters or sequences such as 12345678, bbbbbbbbb or 777777777
Never use your username as a password or a combination of it. Also do not use your domain name as a password.
– Do not use „4ufromme“ or „n0t@home“ as visually similar alternatives.
– Use the entire keyboard and focus on the less frequently used keys.
– Create unique passwords for each account. If you use the same password for all your accounts, it’s possible that multiple accounts could be compromised at once.
– Never use an empty password.
Here are some examples of secure passwords:
!4scOrE&sDayNYeaRs ag0 is a mash-up of several words that are not words themselves, interspersed with special characters. A word that contains numbers from a memorable date (for example, holiday -> 0vac2a0t9io19ln99).
Protect your passwords
In an ideal world, you'd never write down your passwords, but with so many accounts, it's becoming increasingly difficult. If you must write them down, keep them in a safe or other secure location. Passwords on Post-it notes are not a good idea! Never share your passwords with anyone, even friends and family. Rather than telling someone your password if they need to use one of your accounts, log them in.
If you did not initiate the call, do not give your password over the phone. For example, you might receive a call from your Internet Service Provider asking for your password. Request their phone number, then call them back and provide your password. Phone calls are not considered secure. Online chats, emails, and instant messaging are no better.
Passwords should be changed regularly. It's a good idea to change your password every 45 days. It's bad security practice to use the same passwords for years. Make a note in your calendar to remind yourself. Make it a regular occurrence. After a few months, you'll find it's become a habit.
When using a public computer, avoid entering your password. Unfortunately, a large number of public computers have been hacked, meaning users are exposed to malicious software designed to track keystrokes.
Deutsch 
English (UK)