Browse by Topic: Security & Reliability
Password security – the basics
Last modified on 22 October 2017 09:43 PM

Choosing a strong password – resistant to guessing and brute-force hacks – is an important component of email security.  StartMail will also assess your password’s strength for you, and for the sake of your security, passwords deemed "too weak" will not be accepted. 

In addition to a strong password, we recommend using StartMail's 2-Factor Authentication.

Please keep the following guidelines in mind when creating your password:

DO's:

  • Use 12 characters or more
  • Include numbers and other characters like $, @, #, %, etc.
  • Mix in at least a capital letter or two

DONT's:

  • Avoid passwords based on repetition, dictionary words, letter or number sequences, usernames, relative or pet names, places, romantic links (current or past), or biographical information (e.g., ID numbers, ancestors' names or dates)
  • Don’t recycle passwords  from one of your other logins, use a unique password for StartMail
  • Avoid simply appending numbers to the end of a word, e.g., golfbag29
  • Avoid too-simple obfuscation, e.g., p@ssword
  • Avoid too-convenient keystroke combinations, e.g., 12345 or qwerty
  • Avoid incorporating any personal information such as SSN, phonenumber, username(s), nicknames, etc.

How does StartMail determine password strength?

A password automatically receives a weak rating if it is on a blacklist or if it is the same as the username.  

Once a password passes these checks, it is then tested for the presence of different types of characters (letters, numbers, capitals, and punctuation), with the presence of each type increasing the score.

The length of the password is then considered, with longer passwords being awarded a higher score. One of the most important factors is length: a seemingly "strong" password that is only a few characters long will always be weaker than a password that doesn't contain any special characters but is extremely long.

Based on the resulting score, a rating of "too weak," "strong" or "very strong" is assessed.

NOTES:
- If you forgot your StartMail password and can no longer sign in, please click here for more information. 

  • Use a unique password for StartMail; don’t recycle one from one of your other logins
(100 vote(s))
This article was helpful
This article was not helpful

Still haven't found the answer to your question? Click here to contact support.