Passwords

Create a strong password

Note

User accounts associated with Confidential Data such as a Confidential Data Control Plan (CDCP) or International Traffic in Arms Regulations (ITAR) are required to have password lengths of 12 characters according to UT’s Information Resources Use and Security Policy section 15.2.2.3. The same character set described below should be applied and are required.

Keep your account safe with strong passwords. Here are some tips to consider when creating passwords.

  • Make it a minimum of 8 characters long, the longer the better.

  • Use both upper- and lower-case letters

  • Incorporate numbers or punctuation marks

  • Use at least one of these special characters: ! @ # $ % * ( ) - + = , < > : “ ‘

  • A strong password does NOT, in any way, use your personal information, such as name, phone number, Social Security number, birth date, address or names of anyone you know.

Here are the rules imposed by Sysnet on Linux desktops for creating passwords. Passwords are checked against cracklib for strength, don’t be surprised if the response is the password you chose is to simple.

  • Must be 8 or more characters long, the longer the better.

  • Must have one digit.

  • Must have one upper case letter

  • Must have one lower case letter

  • Must have one other character: ! @ # $ % * ( ) - + = , < > : : “ ‘

Visit ITS’ Security Awareness website for more information.

Cracked Passwords

On occasion Sysnet will attempt to crack passwords and inform users to generate a new password. If you receive a help request from rt or a member of Sysnet requesting that your password be changed, please do so immediately. The account expiration for cracked passwords will be set to 14 days. Your account will expire if you do not update your password. It is important to create strong passwords as described above.