Email & Password - some short points

20 important points about e-mail and passwords

10 points about E-Mail

1. Always use services that provide encryption (SSL) when reading your mail like encrypted webmail (like https://webmail.hanken.fi) or an IMAP-clientprogram with SSL (like Thunderbird). Please contact the computercentre if you are unable to set the encrpytion for the program.

2. Do not send confidential information (like a password) unincrypted.  Observe that while you read the e-mail encrypted, the sent messages aren't automatically encrypted. Use a certificate if you're about to encrypt the e-mail. Please contact the computercentre if you need to do this.

3. Do not save the password if your browser suggests it.

4. If you by accident were to receive another persons mail, send it back to the person who sent it( or to the right person, if you know him/her and notify the person who sent the mail). Keep in mind that the information you might have seen in the mail is confidential.

5. Job related e-mail should not be controlled outside of Hankens own e-mail system. 

6.  Make sure your important work e-mails are handled while you are absent from work

7. Do not open suspicious attachments without notifying the datacentre(the mail may contain viruses, worms or trojan horses).

8. Do not answer spam mails and do not unnecessarily give away your e-mail adress

9. Do not send unnecessary mail (like christmas wishes) and do not forward a chainletter

10. When you are no longer employed, the e-mail adress and the inbox will be removed. Give your employer access to your important work e-mails before you leave and delete any private messages.

 

10 points about passwords. 

1. The password should contain a minimum of 12 mixed characters( like small and capitalised letters, numbers and special characters). IT may not include your name or userid and it cannot be an old password.

2. Change your password every once in a while or if someone sees you typing your password of if someone by any other means acquires your password.

3. If an account is used by multiple people should the password be changed if one of the users no longer has the right to access the account.

4. One way to generate a password is to use the first letters of every word in a sentence  and modifying it like the following: "5 Pigs Are More than 2 Elefants" could become "5PiArMoTh2El". You can also use a whole sentence as your password for example "Did I pass the 1:st exam".

5. Do not give away your password to anyone including the IT-staff. 

6. Do not write your password on a physical and/or visible paper.

7. Do not use the same password as you're using for your Hanken account for other Internet services.

8. You absolutely mustn't use a name as a password (including the name of your girl-, boyfriend or your childen).

9. Check out passwords, of course not your own, but one that is similar for example at https://www.grc.com/haystack.htm

10. Use a passwordmanager for example KeePass 2, http://keepass.info/download.html