Password Protocol - Lawrence University

Protocol

Follow these rules when creating a new password to avoid unnecessary problems with password synchronization across Lawrence servers.

Network/Email password:

CANNOT contain two or more consecutive characters from your full account name or username (for example, Joe Smith or smithj can not include joe, oes, esm, smi, mit, ith, or thj in his password)
MUST be at least 8 characters in length. Note: ITS recommends less than 14 characters. It is recommended that you choose a long password, as it is much more secure.
CANNOT be a password that was used previously
Contain characters from three of the following four categories:
- contain at least one uppercase English character (A through Z)
- contain at least one lowercase English character (a through z)
- contain at least one numeral (0 through 9)
- Non-alphabetic characters (for example, !, $, #, %)
CANNOT contain spaces
CANNOT be changed again for a 24-hour period

Banner/Hyperion password:

Password cannot be same as the username.
New password must be different from previous password by 3 characters
MUST be at least 8 characters in length
contain at least one English character (a through z)
MUST contain at least one numeral (0 through 9)
CANNOT contain any of the following symbol characters:
< > , . / ? ! @ # $ % ^ & * ( ) - _ = + ~ ` ' " : ; [ ] { } \ |
CANNOT be a single word from the dictionary, but can be two or more words together with the addition of the "MUST contain" items above

Note of caution: To ensure your pirvacy and the security of Lawrence University do not ever share your passwords, submit them online or e-mail them to someone. ITS and the Helpdesk will NEVER ask for your password via e-mail.

Additional Suggestions

In general, stick to items known over a period of years. Trying to remember a password including a favorite song, for example, could be difficult if the favorite song changes on a weekly basis. The names of children, a spouse, a pet, or a favorite sports team are easily determined by others and could be used to attempt to compromise the account. The following suggestions include the required combination of letters and numbers, using both upper case and lower case letters to further improve the quality of the password.

Use the initial letters from an easily remembered phrase, interspersed with numbers. For example, IPA85ttfotusoa ("I Pledge Allegiance To The Flag of the United States of America", with a graduation year in the middle).
Use the name or initials of a person (an actor or past teacher, for example) and a date associated with that person (birthday, anniversary, etc.).
Combine three or more digits of a telephone number or street address with the initials of the individual associated with that number or address -- only if it is NOT published. On this note, it is also not a good idea to use numbers of a license plate, since anyone could make note of the plate number and try it as a possible password.

Choosing password generating schemes such as those above is no more difficult and takes no more time than choosing a new password. In fact, once the scheme is nailed down, choosing new passwords from time to time is much easier. Note that the network server will not allow any new password that differs only by the addition of a trailing character.