Do’s
-DO use a password with mixed-case letters. Use uppercase letters throughout the password.
-DO use a password that contains alphanumeric characters and include punctuation, where supported by the operating system.
-DO use at least six characters, eight characters for Windows NT.
-DO use a seemingly random selection of letters and numbers.
-DO use a password that can be typed quickly, without having to look at the keyboard. This makes it harder for someone to steal your password by looking at your keyboard (also known as “shoulder surfing”).
-DO change passwords regularly. The more critical an account to network integrity (such as root on a Unix host or Administrator on Windows NT), the more frequently the password should be changed. This change stops someone who has already compromised an account from continued access.
What else …?
