Tekorosã rape puruhárape g̃uarã ha ñe’ẽñemi hekosãva

Ne mba’ete ñemo’ã natekotevẽi hasývo ijejapo — ha Firefox ne pytyvõkuaa upevarã.

More and more of the sensitive, valuable things in our life are guarded through password-protected online accounts — love letters, medical records, bank accounts and more. Websites use login procedures to protect those valuable things. Generally, as long as someone can’t log into your account, they can’t read your email or transfer money out of your bank account. As we live our lives online, how should we protect our logins?

tl;dr:

  • Oipuru ñe’ẽñemi jereguáva ha iñambuéva peteĩteĩva tendápe g̃uarã
  • Ema’ẽag̃ui kundahára tekorosãre ñesẽre ha aníke ejeroviaiterei
  • Ejapo ne porandu ñembohovái tekorosãgua oikoporãva ne ñe’ẽñemícha
  • Eipuru ñe’ẽñemi ñangarekohára hasy’ỹ hag̃ua imoheñói ha ñe’ẽñemi ñemomandu’a
  • Eipuru “ñemoneĩ mokõi reheguáva” ikatúma guive

Pe ñe’ẽñemi jeiko asy

Most logins today are protected by a password. If an attacker can get your password, they can access your account and do anything you could do with that account. So when you ask how secure your account is, you should really be thinking about how safe your password is. And that means you have to think about all the different ways that an attacker could access your account’s password:

  • Ehecha mba’éichapa oipuru tenda ipapapy’ỹva
  • Ijurupyasy
  • Amonda ne marandurenda orekóva ne ñe’ẽñemi
  • Aipuru ñe’ẽñemi guerujeyrã oĩporãjey hag̃ua
  • Rombotavy eme’ẽ hag̃ua

Ereko hag̃ua ne mba’ete tekorosãme, emboyke heta ombyaikuaáva ikatuháicha. Peteĩteĩva mba’evai oreko mba’éichapa emboykekuaa.

Eheka pe mbotyha ne kundahárape

Ndahasýi emboykévo mba’evaiapoha omondakuaáva ne ñe’ẽñemi eikévo peteĩ ñanduti renda ipapapy’ỹvape: Eñamindu’uvéke ehai mboyve ne ñe’ẽñemi nderehecháiramo mbotyha ra’ãnga’i pe URL rendápe, koichagua:

Kundahára tuichavévape ojehecha mbotyha ijurja’ỹva ñanduti kundaharape renda kundaharape rupápe.

The lock means that the website you’re using is encrypted, so that even if someone is watching your browsing on the network (like another person on a public WiFi hotspot), they won’t be able to see your password. Firefox will try to warn you when you’re about to enter your password on an unencrypted site.

Peteĩ mbotyha juasapyre tairenda ndive ohechauka nahekorosãiha jeike.

Ne kundahára ne pytyvõta avei eñemorandu hag̃ua tendakuéra jeroviaha rehegua, ne pytyvõkuaa hag̃ua phishing rembiapova’ígui. Péicharamo, eikese vove ñanduti renda ha’ekuaáva phishing, Firefox (ha oimeraẽva kundahára) ohechaukáta kyhyjerã mba’erechaha tuichavévape — ema’ẽ ha eñamindu’u mokõi jey eipuru hag̃ua pe tenda

Firefox ohechaukáta kyhyjerã pe ñanduti rendápe térã tenda phishing ojekuaávape.

In general, the best defense against phishing is to be suspicious of what you receive, whether it shows up in email, a text message or on the phone. Instead of taking action on what someone sent you, visit the site directly. For example, if an email says you need to reset your PayPal password, don’t click the link. Type in paypal.com yourself. If the bank calls, call them back.

Mbarete oĩ tekoetápe

The secret to preventing guessing, theft or password reset is a whole lot of randomness. When attackers try to guess passwords, they usually do two things: 1) Use “dictionaries” — lists of common passwords that people use all the time, and 2) make some random guesses. The longer and more random your password is, the less likely that either of these guessing techniques will find it.

When an attacker steals the password database for a site that you use (like LinkedIn or Yahoo), there’s nothing you can do but change your password for that site. That’s bad, but the damage can be much worse if you’ve re-used that password with other websites — then the attacker can access your accounts on those sites as well. To keep the damage contained, always use different passwords for different websites.

Oipuru Firefox Monitor oma’ẽ ñanduti veve kundaharape ojuajúva ne mba’etére. Ne ñanduti veve kundaharape ojekuaárõ mba’ekuaarã mboguaha atyguasu herakuãva, eñeñatõita ha oje’éta mba’épa ejapóta emo’ã hag̃ua ne mba’ete iñapañuãiva.

Porandu tekorosãrã: Che sy rerajoapy omenda mboyvegua ha’e “Ff926AKa9j6Q”

Finally, most websites let you recover your password if you’ve forgotten it. Usually these systems make you answer some “security questions” before you can reset your password. The answers to these questions need to be just as secret as your password. Otherwise, an attacker can guess the answers and set your password to something they know.

Randomness can be a problem, since the security questions that sites often use are also things people tend to know about you, like your birthplace, your birthday, or your relatives’ names, or that can be gleaned from sources such as social media. The good news is that the website doesn’t care whether the answer is real or not — you can lie! But lie productively: Give answers to the security questions that are long and random, like your passwords.

Erekóta pytyvõ ñe’ẽñemi ñangarehágui

Now, all of this sounds pretty intimidating. The human mind isn’t good at coming up with long sequences of random letters, let alone remembering them. That’s where a password manager comes in. Built right into the browser, Firefox will ask if you want to generate a unique, complex password, then securely save your login information, which you can access anytime in about:logins.

Eike vove Firefox-pe ne mba’ete Firefox pegua rupive, embojuehekuaa opaite ne mba’e’okápe ha eikekuaa ne ñe’ẽñemíme pumbyry kundahára guive Firefox. Eñemomarunduve mba’éichapa eñangarekóta ne ñe’ẽñemi ojuajúva rehe.

Ñemboaje mokõi mba’ére (2FA)

2FA is a great way to level-up your security. When setting up a new account, some sites will give you the option to add a “second factor” to the login process. Often, this means linking your phone number to your account, so after you enter your password, you will be prompted to enter a secure code texted directly to you. This way, if a hacker has managed to get your password, they still won’t be able to get into your account, since they don’t have your phone.

Ne mba’ete Firefox pegua, techapyrãramo, omo’ãkuaa 2FA ndive, ikatukuaa eñemomaranduve ko’ápe.

2FA ome’ẽve tekorosã umi ñe’ẽñemi añógui, hákatu ndaha’éi opavave ñanduti renda omoneĩva. Ejuhukuaa peteĩ ñanduti renda rysýi omoneĩva 2FA https://twofactorauth.org-pe, péicha avei tenda rysýi omoneĩ’ỹva 2FA ha mba’éichapa ejerurekuaa ñepytyvõ.

Imbarete, hekoeta ha multifactorial

For better or worse, we’re going to be using passwords to protect our online accounts for the foreseeable future. Use passwords that are strong and different for each site, and use a password manager to help you remember them safely. Set long, random answers for security questions (even if they’re not the truth). And use two-factor authentication on any site that supports it.

In today’s internet, where thousands of passwords are stolen every day and accounts are traded on the black market, it’s worth the effort to keep your online life safe. When you use Firefox products, some of the effort is taken off your plate, because all our products are built to uphold our privacy promise. And Firefox is always guided by Mozilla’s mission, the not-for-profit we are backed by, to build a better internet.

Emoñe’ẽ Ñemigua marandu ore apopyre rehegua