Security advice

From OCF Help

Jump to: navigation, search

The OCF takes the security of its users and network seriously, and OCF staff will disable insecure or compromised accounts without any advance notice.

This pages provides some security recommendations to keep your account secure.

Password Security

  • Make your password hard to guess. Avoid basing your password your name, account name, school name, birthdate, or publicly available information.
  • We recommend a password that is:
    • at least 8 characters in length
    • not a word in any language
    • contains uppercase and lowercase letters, numbers, and special characters
  • Keep your password secure. Don't write down your password, and don't give out it out to others.
  • Never send your password to OCF staff. We will never need your password.

Web Application Security

If you use your OCF account to run web applications applications (blogs, forums, photo galleries, etc), it is imperative that you keep your web application software up-to-date. Security vulnerabilities for web applications are always being discovered, and they can be exploited to allow unauthorized persons to access to your account.

There are a few things you should do to minimize security problems:

  • Check the web application's website to see if there is a mailing list for security announcements and sign up for it.
  • Check to make sure your file permissions are secure. Many web applications come with insecure file permissions by default.
Retrieved from "http://docs.ocf.berkeley.edu/wiki/Security_advice"