[OT] time to change your iTunes password?
Keith Clarke
keith.clarke at clarkeandclarke.co.uk
Fri Jan 7 13:28:21 EST 2011
Sure, but 10 attempts might well be enough to skim 50,000 accounts if you'd harvested, say, a million email addresses? I'm just suggesting that the percentage shot here may be harvesting through the mass stupidity of human-kind, rather than complex technology. I think it was Einstein who said that artificial intelligence was no match for natural stupidity! Just scan the top-10 of this list if you need proof http://www.whatsmypass.com/the-top-500-worst-passwords-of-all-time
On 7 Jan 2011, at 18:12, Bob Sneidar wrote:
> I'm willing to bet that you will disable your account for a period of time if you type in the wrong username/password 10 times. Every reputable web site that requires security does this now to foil brute force bots. I cannot believe Apple would overlook that issue.
>
> Bob
>
>
> On Jan 7, 2011, at 10:00 AM, Keith Clarke wrote:
>
>> ...I still wonder whether this is evidence of Apple security being compromised (big problem for all) versus a simple numbers game exploiting user stupidity/laziness (more fool them).
>>
>> A web-crawler captures publicly listed email addresses, these then get tested as iTunes logins, coupled with the top-10 worst passwords. The surprising stat would be if there are merely 50,000 iTunes users that are that sufficiently stupid and/or lazy?
>>
>> There are probably more than 50,000 youtube videos showing monitors in the background that are covered in post-its with passwords and banking details! :-)
>>
>
>
> _______________________________________________
> use-livecode mailing list
> use-livecode at lists.runrev.com
> Please visit this url to subscribe, unsubscribe and manage your subscription preferences:
> http://lists.runrev.com/mailman/listinfo/use-livecode
More information about the use-livecode
mailing list