Password-Informations
=====================

Password-Hashing
----------------

Your password is saved in the system-database and encrypted one-way via ``sha512``-Hash-Function after it was
"`salted`_" (for your own security). Even System administrators of the Server/Database can read your password.

This process guarantees, that even in the case of an hacker-assault with stolen data, your personal password can not
be used by them.

Secure-Password
---------------

Although we hash our password, you should use strong passwords. Consider that a strong password contains at least
one character of each following types, is more that 8 characters long (the longer, the better) and should not
contain parts of words from dictionaries.

+ upper-case letters (A-Z)
+ lower-case letters (a-z)
+ numerals (0-9)
+ special-chars (e.g. !?/()§$&#*.-,)

Password-Reset
--------------

If you lost your password, you have to request a new one. Because of the encrypted storage in our Database,
we cannot restore it.

Open the login-page of your System (e.g. https://demo.t-point.eu/login) and click on "**lost password**".

You can now insert your username or your email-address.

After submitting the form, you will receive a email to your address with a link to reset the password.

This links leads you to a password-insertion form, where you can define a new password.

.. _salted: https://en.wikipedia.org/wiki/Salt_%28cryptography%29