Password Protocol - Lawrence University

Protocol

Follow these rules when creating a new network password to avoid unnecessary problems with password synchronization across Lawrence servers. Your new password:

MUST be at least 8 characters in length, but CANNOT exceed 14 characters
(ITS recommends that you choose a long password, as it is much more secure.)
MUST contain at least one uppercase English character (A through Z)
MUST contain at least one lowercase English character (a through z)
MUST contain at least one numeral (0 through 9)
CANNOT contain three or more consecutive characters from your full account name or username (for example, Joe Smith or smithj can not include joe, oes, esm, smi, mit, ith, or thj in his password)
CANNOT contain spaces
CANNOT contain any of the following symbol characters:
< > , . / ? ! @ # $ % ^ & * ( ) - _ = + ~ ` ' " : ; [ ] { } \ |
CANNOT be a single word from the dictionary, but can be two or more words together with the addition of the "MUST contain" items above

Additional Suggestions

In general, stick to items known over a period of years. Trying to remember a password including a favorite song, for example, could be difficult if the favorite song changes on a weekly basis. The names of children, a spouse, a pet, or a favorite sports team are easily determined by others and could be used to attempt to compromise the account. The following suggestions include the required combination of letters and numbers, using both upper case and lower case letters to further improve the quality of the password.

Use the initial letters from an easily remembered phrase, interspersed with numbers. For example, IPA85ttfotusoa ("I Pledge Allegiance To The Flag of the United States of America", with a graduation year in the middle).
Use the name or initials of a person (an actor or past teacher, for example) and a date associated with that person (birthday, anniversary, etc.).
Combine three or more digits of a telephone number or street address with the initials of the individual associated with that number or address -- only if it is NOT published. On this note, it is also not a good idea to use numbers of a license plate, since anyone could make note of the plate number and try it as a possible password.

Choosing password generating schemes such as those above is no more difficult and takes no more time than choosing a new password. In fact, once the scheme is nailed down, choosing new passwords from time to time is much easier. Note that the network server will not allow any new password that differs only by the addition of a trailing character.