For passwords to keep their effectiveness, they should be changed on a continual basis. Changing passwords can be very simple. Windows passwords are changed through computer management or the control panel and UNIX uses the command ‘passwd’ command. Changing the password from the source is also essential. For example, if it is an ISP account password, don’t telnet through 4 differerent machines. If it is an office computer, you should be on that computer and not a co-worker’s when changing it. Also don’t let anyone look over your shoulder when doing it. When you’re changing a password, especially for linux/unix enviroment you should use a secure channel to change it…SSH for example is a good channel to use for changing passwords. You can get the program Putty off the web (opensource) or SecureCrt.
Adding an extra step like pins cards or biometric readers don’t hurt either, a lot of traders in the banking industry tend to use what we call Bloomberg keyboards.
These keyboards are biometric readers. It will be very hard for a hacker to crack into your system if he can’t get past the first step, your fingerprint! Bloomberg keyboards and other devices like a biometric laptop are on the expensive side but it can be a necessary investment to ensure the confidentiality of your data.
References
http://en.wikipedia.org/wiki/Ssh,
http://www.securityfocus.com/infocus/1537
