READ TO THE BOTTOM.

Save your login email for WordPress and cPanel in a permanent place. It is not my job to resend this again and again because you get locked out of your site.

Warning:

  1. NEVER reset any of the passwords I have provided to you without my express permission—in advance. If you need help, I need access to your backend.
  2. NEVER replace your passwords with something easier to type and remember. (That's what password managers are for. Safari, Chrome, and Firefox all have free, built-in password managers. LastPass, 1Password, and Dashlane are third-party, cross-platform apps that offer password management. I have over 900 passwords in my account, all of them very complex and all very different.) You will have at least a half dozen passwords to manage for your site.
  3. Get a password manager, and use it like a religion.
  4. Copy/paste your password from my email the first time. Fonts can fool you and prevent successful logins. For example, is it a 1 or an l or a | or a 0 or an O?

Your disregard for these policies exposes everyone on our server to attack, including our commercial accounts. If you violate these guidelines and we get hacked, logs will reveal you as the culprit.

Moving Forward:

  1. Never use the same password twice. Yeah, not even your uwa.edu password or the password you’ve used on everything else since you were 12 years old. Take security seriously.
  2. Never use dictionary words.
  3. Use passwords that involve the whole keyboard, not just alpha characters.
  4. Use passwords with 16 or more characters.

Here's why. It’s not a question of whether you’ll be hacked or not, but when you’ll be hacked. Bank-level, 256-bit encryption is just an illusion. You will get hacked. But that doesn’t mean you have to make it easy for hackers by essentially leaving your keys in a running car with the doors open.

I have been a webmaster since the late 1980s. We have a number of security measures in place because I have been hacked twice due to client (and student) laziness, once by Russian Ne'er-do-wells and once by Chinese malefactors. It took me weeks to correct all the malicious code rewrites, and if I’m being honest, some of what was done I could not correct, and we lost it forever. (They ate our online backups too, so there was a lesson.) So again, we have security measures like most people don’t put into place. And still, on the average, we get 2,000 brute force attacks EVERY WEEK. These are code/bot attacks, not crazy Bob sitting in his underwear trying to guess your password one try at a time.

More on security appears in your course content.

Image Size Maximums

Please limit the width of images loaded to your site to 2,500 pixels or less. Anything larger is overkill, and it will significantly reduce the speed of your site and fill up the space allotted for your site on the server.

Passwords