## General Rules¶

1. Subscribe to the “TYPO3 Announce” mailing list at http://lists.typo3.org , so that you are informed about TYPO3 security bulletins and TYPO3 updates.
2. React as soon as possible and update the relevant components of the site(s) when new vulnerabilities become public (e.g. security issues published in the mailing list).
5. Never use the same password for a TYPO3 installation and any other service such as FTP, SSH, etc.