Frequently Asked Questions
- About Our Accounts
- How do I renew a FREE subscription?
- How do I close my account?
- How much do your packages cost?
- How do I upgrade my account?
- Email Account How-Tos
- How do I set up/manage my aliases?
- How do I use multiple identities?
- How do I set up email filters?
- How do I use message highlighting?
- How can I archive my emails for safekeeping or transfer?
- Getting Started
- How do I import my emails and contacts from my student account?
- New Graduate FAQ
- I can't remember my password!
- I would like to use an email program, such as Outlook or a m...?
- This email claims to be from you... is it?
- Something's Wrong...
- I don't think I am receiving any emails.
- My email forwarding is not working.
- Emails people send to me are bouncing back to them!
- I can't send/receive emails from my mail client/phone.
- Tips and information
- What does this mean?
Your password for your account is, in most cases, the only thing standing between a hacker and your personal information. As such, having a strong and secure password is essential - but how do you make a password as strong as possible?
Common problems with passwords
For many of us there is a difficult balance to strike between choosing a secure password and one that you can easily remember. We are often told that a secure password contains a mixture of lower and uppercase, numbers and symbols, but a password such as ' tH7&!me" ' is easy to forget. The alternative of using simple words like "elephant" is much easier to keep track of but also incredibly simple for a malicious attacker to guess.
The crucial aspect of strengthening a password is it's length. A long password, just like a long string of numbers, is harder to guess, regardless of the complexity.
Comparison of different password strengths
Below you will find a few example passwords, each with their own strengths and weaknesses for comparison.
Please note that these are listed as examples only, and are not intended to be copied for personal use.
Password1: Passwords that are simply "password" (or variations of) are surprisingly (and worryingly) common. This variation is easy to remember, and contains one of the "common" rules of strong passwords - a mix of upper and lower case and a numerical character.
However, the easy to remember format of these characters is also incredibly predictable for hackers. They will almost always try capitalising the first character of a password, as well as adding the numbers 1, 12 or 123 to the end. This is because many accounts require a user to add numbers and a mix of upper and lower case characters, at which point the user adapts their existing password in the simplest way possible to fit the criteria required. This kind of password is highly insecure.
happypixiemoondance: At first glance this example might appear absurd, but it is in fact probably one of the strongest of the examples listed here - purely due to its length. As mentioned previously, the longer your password is, the more combinations of letters and characters a hacker has to guess in order to gain access to your account. However it is also crucial to ensure that the words are chosen at random, or at the very least are not words commonly associated with each other - "carparkingticketstreet" for example are all words with a common link, making them easier to guess when used in conjunction.
Whilst this example breaks one of the golden rules of passwords, which is to avoid the use of dictionary words, by combining several words at random you can regain password security whilst maintaining memorability.
This kind of password may not be appropriate for all sites as many enforce at least one upper and lower case character, one number and one symbol. You can add such elements if necessary by, for example, capitalising the last letter of each word or separating the words with a certain number.
2bon2btit? - Derived from the phrase "To be or not to be, that is the question" using a simple translation, taking the first letters of each word and translating certain sounds into numbers and symbols. It has the best of all worlds - memorable but also possessing high entropy from including a mix of characters. This works best with a sentence, quote or lyric of at least 10 words.
There is another tactic of taking any random character on the keyboard and repeating it 20+ times and combining it with any other random character from a different class:
%%%%%%%%%%%%%%%%%%%%p is a relatively strong password and actually very memorable.
The Three Golden Rules of Good Passwords
- Never use a dictionary or other common word by itself or even with slight variations.
- Always choose a password of sufficient length - many websites recommend at least 8 characters, but ideally you should aim for 12 or more for a higher level of entropy.
- Make sure your password is memorable - a password is of no use to you if you cannot remember it or if you have to write it on a piece of paper.
If you want to check how secure your password is, you can use an online tool (such as: http://password-checker.online-domain-tools.com/ ) to find out roughly how long it would take a hacker to guess your password.
The file size limit for email attachments on the Cantab service is 25MB.
The main reason for this file size limit is security - without these limits it would be possible for malicious users to bombard email servers with huge email attachments and ultimately crash the servers. Even if we were to increase the file size limit on our end, there is no way of ensuring that a recipient's server would accept a file of that size.
If the file attachment size is too big, and thus rejected by the recipient's server, you will usually be notified with what is known as a "bounce" message; these exist primarily to inform users that their email has not been received, and provides a brief reason why.
Should you wish to send a file to a recipient that is over 25MB in size (or has otherwise been rejected by their mail server) there are two alternatives available that would allow you to work around these limits:
- Using a cloud storage or FTP link (a solution such as Dropbox, Google Drive, etc.) can provide users with a link to download the file, this can then be inserted into an email.
- Using file compression software (such as Winzip, or the native functionality built into most operating systems) to make the file smaller for the purposes of attachment.