Jump to content

Wikipedia:TheWikiWizard/Security Tips

From Wikipedia, the free encyclopedia

Another Admin Account was compromised this month, this serves as a reminder that we need to make sure our accounts are secure, here are some tips to enhance your Wikipedia account security by up to 500% or more.[1]:

  • Don't re-use the same password for every site
  • Make your email for your Wikipedia or any other Wikimedia Project account a "Secure Email site", for example use, Gmail, Outlook, Yahoo, AOL. Avoid other small/minor email sites
  • Keep track of your logged out IP address and make sure that there are no vandals/trolls using your IP
  • Keep track of your IP address's contributions
  • If your IP changes, do not log in until you have reviewed your IP's contributions/talk page; if there has been a history of trolls/vandals on your IP, then it is strongly recommended you do not log in from the project that the vandalism/trolling took place, instead log in from another Wikimedia Project which has not been used by the IP. If this is not possible, it is recommended that you watch around you carefully while logging in and protect your password while logging in, log in in a private window, and once you have logged out on the private window, clear your browser cache.
  • Enable 2fa
  • Do not log in on public computers or wifi networks that are not yours (If you must, do not create an alternate account.)
  • A password is strong and secure until the moment you write it down on a paper. [then it's not]
  • Do not tell your classmate\workmates, etc your Wikipedia username unless you know them very well and their Wikipedia editing history (Are they a vandal/troll on Wikipedia? If yes, do not tell them your username!)
  • Do not look up your Wikipedia Contributions on a public computer
  • Do not edit pages where a vandal you saw vandalized the page
  • Don't insult the vandals
  • Always log out on your own computer when done and always edit in a private window [includes signing to your Wikipedia contact email in a private window] this is for extra security, and do not click "Keep me logged in"
  • If a vandal/troll is currently present in your IP, DO NOT LOG IN.
  • Use a 'secure email' site as a back up email for your Wikipedia contact email (If you have one)
  • Change your email/Wikipedia passwords at least once a month
  • Use bot passwords to log in to huggle (see this page]
  • If you plan to be inactive for a long time let other Wikipedians know so they can keep an eye on your account

For IP's

[edit]

If you are an IP editor to enhance your security, it is strongly recommended that you create an account, but if you don't want to, follow these tips provided for IP security

  • Set a strong password for your Wifi network \
  • Know the amount of devices that are connected to your network

Notes

[edit]
  1. ^ *Based on your account type and if you use all these tips