External security: Difference between revisions

From xat wiki
No edit summary
No edit summary
Line 1: Line 1:
<languages/><translate>
<languages/><translate>
The purpose of this article is to give more information about security tips that can only be taken in charge by users.  
External Security is any security measure that is outwith xat's control and is in the user's hands, such as using a strong password, and protecting their email.


Therefore, these tips are not directly linked to xat and it only depends on you using it or not. Also note that these tips can be used on any website and will generally help you to secure your accounts: this is the first step to have safe accounts. This is why we strongly recommend you to use them.
Therefore, these tips are not directly connected to xat and it is ultimately the user's choice to follow these tip and they can be applied to website. These tips are critical to keeping your xat account secure and we recommend that you utilise them.


Remember that xat will '''never''' ask you your personal information.
Remember that xat will '''never''' ask you your personal information.
Line 8: Line 8:
==Password==
==Password==


Password is the key word of account security. Having a strong password is essential while using xat and any other website. It prevents people guessing it easily and getting into your account.
Passwords are the key words of account security and having a strong password is essential while using xat or any other website. Having a strong password prevents people from guessing and [http://www.computerhope.com/jargon/b/brutforc.htm brute forcing] your password.


This way, avoid using your name, username, birthday, repeated characters, or set of common words.
To make sure that no one can guess your password, avoid using your name or names of family members, your username, birthday, repeated characters, or any common words found in the dictionary. Remember to use a different password from your email.


'''Note:''' On xat, non-alphanumeric characters will be stripped from your password, so ensure it only contains alphanumeric characters, a-Z, 0-9.
'''Note:''' On xat, any non-alphanumeric characters will be stripped from your password, so ensure that it only contains alphanumeric characters (a-z, A-Z, 0-9).


===Strong Password===
===Making a Strong Password===


A strong password consists of at least 8 characters that are a combination of letters (of both uppercase and lowercase) and numbers. Therefore, your password for xat should contain both uppercase and lowercase letters and numbers. The more characters your password contains, the stronger it will be.
Making a strong password can be difficult, however generally a strong password consists of at least 8 characters that are a combination of letters (both uppercase and lowercase) and numbers. The more characters your password contains, the stronger it will be.


===Changing Password===
You can also use the following generator which will take any input and turn it into a secure password (which works with that) that you can use for your account: http://crypo.pw/secure-mpg1-online


In an open and moving space like the Internet, it is really important changing your password oftenly and using a different one for  any other social account you own. We recommend you changing your password on xat once every 3 - 6 months.
===Regularly Changing Your Password===
 
In a fast paced and forever changing place like the Internet, it is recommended that you change your password every 3 - 6 months so that in the event there is any sort of data breach, your account will likely not be affected.


==Email Security==
==Email Security==


This will show you how to secure your xat account email to prevent anyone else from accessing it.
Email security is doubly important, as this is basically your centre of communication and links all of your accounts together, be it xat or any other social networking site. Remember to


===2-step verification===
===2-step verification===


The main email providers allow you to use 2-step verification to secure your email accounts. It requires you to give to your provider your phone number. Each time someone (including you) tries to access your email account, you will be sent a security token on your phone to successfully connect. This way, only someone with your phone is able to connect into your email account.
The main email providers allow you to use 2-step verification to secure your email accounts. It requires you to give to your provider your phone number. Each time someone (including you) tries to access your email account, you will be sent a security token to your phone to then enter on your email login which will allow you to continue. This way, only someone with your phone is able to login into your email account.


Here is a list of some providers allowing 2-step verification:</translate>
Here is a list of some providers who provide their users with 2-step verification:</translate>


*Gmail - https://support.google.com/accounts/answer/185839?hl=en&rd=1
*Gmail - https://support.google.com/accounts/answer/185839?hl=en&rd=1
Line 36: Line 38:
*Hotmail/Outlook - https://account.live.com/Proofs/Manage
*Hotmail/Outlook - https://account.live.com/Proofs/Manage
*iCloud/Me/Mac - https://support.apple.com/kb/HT5570
*iCloud/Me/Mac - https://support.apple.com/kb/HT5570
'''Note:''' We do '''not''' recommend Yahoo or Hotmail/Outlook due to their policies which allow their users to re-use email handles if they become inactive.


{{Category|Security}}
{{Category|Security}}
__NOTOC__
__NOTOC__

Revision as of 21:49, 4 September 2016

External Security is any security measure that is outwith xat's control and is in the user's hands, such as using a strong password, and protecting their email.

Therefore, these tips are not directly connected to xat and it is ultimately the user's choice to follow these tip and they can be applied to website. These tips are critical to keeping your xat account secure and we recommend that you utilise them.

Remember that xat will never ask you your personal information.

Password

Passwords are the key words of account security and having a strong password is essential while using xat or any other website. Having a strong password prevents people from guessing and brute forcing your password.

To make sure that no one can guess your password, avoid using your name or names of family members, your username, birthday, repeated characters, or any common words found in the dictionary. Remember to use a different password from your email.

Note: On xat, any non-alphanumeric characters will be stripped from your password, so ensure that it only contains alphanumeric characters (a-z, A-Z, 0-9).

Making a Strong Password

Making a strong password can be difficult, however generally a strong password consists of at least 8 characters that are a combination of letters (both uppercase and lowercase) and numbers. The more characters your password contains, the stronger it will be.

You can also use the following generator which will take any input and turn it into a secure password (which works with that) that you can use for your account: http://crypo.pw/secure-mpg1-online

Regularly Changing Your Password

In a fast paced and forever changing place like the Internet, it is recommended that you change your password every 3 - 6 months so that in the event there is any sort of data breach, your account will likely not be affected.

Email Security

Email security is doubly important, as this is basically your centre of communication and links all of your accounts together, be it xat or any other social networking site. Remember to

2-step verification

The main email providers allow you to use 2-step verification to secure your email accounts. It requires you to give to your provider your phone number. Each time someone (including you) tries to access your email account, you will be sent a security token to your phone to then enter on your email login which will allow you to continue. This way, only someone with your phone is able to login into your email account.

Here is a list of some providers who provide their users with 2-step verification:

Note: We do not recommend Yahoo or Hotmail/Outlook due to their policies which allow their users to re-use email handles if they become inactive.