Learn how to update and create strong passwords to protect your email or other accounts. This helps block hackers and prevent phishing.

On this page

Secure passwords

Best practice is for your passwords to meet all of the criteria listed below:

  • 8 or more characters in length. The longer the better.
  • Include ALL four character types, not just some of the following:
    1. Lowercase letters.
    2. Uppercase letters.
    3. Numbers.
    4. Symbols.
  • Obvious substitutions like “A” becomes “@” or “E” becomes “3” won’t be considered strong and should be avoided.
  • Avoid personal details like important dates, phone number, address, family names.

Email sending limits can be imposed on email accounts with older weak passwords, and this can be especially noticed by businesses trying to send a lot of emails. These limits help prevent compromised accounts from doing too much damage to your reputation and will easily be fixed by updating the password to a secure rating.

Password tips

It may sound impossible to remember secure passwords, but it also means an impossible password to crack into. Writing a password down on paper and keeping it somewhere safe is far safer these days than an easily guessed password, or a text document online. To keep things easy for you but hard for others, you could try some of these tricks:

  • Have a written copy that’s always missing the same spot for all passwords. For example, if the third letter is always “P”, omit the third letter “P” from the written copy and anyone coming across the paper copy will not be able to use that password.
  • Take a favourite word or saying, but misspell it: Culgry3Sity#Albetais very long and confusing, but easy for a Calgary Alberta resident and unlikely to ever get cracked.
  • If you want to use the same password everywhere (not recommended), at least make differentiations. The differentiations in passwords could be close, but not obvious to the type of service. In the below examples we added the last letter of the service. Again if the added letter is omitted from written records it would be near impossible for a thief to guess.
    • Facebook: Culgry3Sity#AlbetaK
    • Shaw: Culgry3Sity#AlbetaW
    • TD: Culgry3Sity#AlbetaD
    • Amazon: Culgry3Sity#AlbetaN

Updating email passwords

  • @shaw.ca email passwords are only changed from within My Shaw.
    1. Login to My Shaw.
    2. Go menu and select 'Internet'.
    3. Scroll down to '@Shaw Email Accounts' and select 'Change password' for email address in question.
    4. Save changes.
  • Hosted email passwords can be managed from the individual email address’ Webmail, or by managing all emails in the domain's portal:
    • Hosted Webmail:
      1. Sign in to Webmail.
      2. Select 'Preferences' tab on the right.
      3. Select 'Change Password' from the left menu.
      4. Make changes, then press 'Save' button.
      5. Sign out of webmail.
    • Hosted Domain Management:
      1. Go to Shaw Hosting Log In.
      2. Use 'Hosting' log in option on the right.
      3. Select 'Email' quik access button.
      4. In new window, select 'Dashboard' tab.
      5. Click the selection square on far left of the email you want to change.
      6. Current password will show on the right, along with 'Change' button.
      7. After new password entered in, select 'Apply'.
      8. Repeat as needed for other email addresses then sign out.

Locked Shaw email accounts

If your @shaw.ca email address fails to work after trying to update the password in My Shaw, it could be that your email address was locked. This can happen if the email gets compromised and used by others to send emails through your email address.

Your incoming emails will still keep coming in, and we’ll be happy to help you unlock the email so you send out again. Call in to Business technical support and we’ll verify if this is the issue. If this turns out to be the issue, it’s best to review the Why is my email address being blocked from sending page, and follow all the instructions listed there. This should help prevent any repeat issues.