Information Technology Services

Passwords/Passphrases

 

Your UMSL SSO_ID works in conjunction with your password to identify your information and keep it secure. This basically your "key" to your electronic campus resources. So, just like a key you want to keep it secure and not give it out to other people.

Password rules for your SSO_ID

If you are struggling to come up with a good password, here are some examples and information to think about.

Here are some possible acceptable passwords.

  1. shortpass : Apple11
  2. medpass : Yello_Bee!
  3. longpass : This!slongpass1
  4. long2pass : Another1,longpass

How long it takes to crack these passwords.

  1. shortpass : Apple11
    • trivial, < 5 min dictionary attack, half of LM is blank
  2. medpass : Yello_Bee!
    • easy, ~2 days brute force, broken into two 7 character LM's
  3. longpass : This!!slongpass1
    • difficult, ~5e12 years brute force, no LM hash

Change your passphrase/password often!

Frequent passphrase/password changes are essential to protect the security of the University network. You may change your passphrase/password as often as you like. UMSL requires you to change your password every 180 days. You will receive an email reminder when it is time to change your password.

Password DO's and DON'Ts.

What if I forget my password?

If you forget your password, it can be reset by going to http://sso.umsl.edu.

 

itslogo