Jacking Netflix







Netflix has relieved new and disturbing terms for their service which basically admit publicly, to what they were sued for:

“In determining priority for shipping and inventory allocation, we may utilize many different factors, including the number and type of DVDs you rent through our service, the membership plan you select, as well as other uses of our service by you. For example, if all other factors are the same, we give priority to those members who receive the fewest DVDs through our service. The type, number, mix and weighting of the various factors impacting shipping and inventory allocation will change from time to time and will be made in our sole and absolute discretion.”

In other words, if they find you renting and returning quickly, and it ups the amount of monthly dvds you rent, they can intentionally slow down your shipments so you don’t rent too many. They also mention in this section that “most people check out 1-11 dvds in a month”. I guess this is their target # for what they want to allow.

A good site to book mark now is:
Hacking Netflix @ http://www.hackingnetflix.com/

Passwords – Have you Changed yours lately?



By ASHLEE VANCE
Published: January 20, 2010

Back at the dawn of the Web, the most popular account password was “12345.”

Today, it’s one digit longer but hardly safer: “123456.”

Despite all the reports of Internet security breaches over the years, including the recent attacks on Google’s e-mail service, many people have reacted to the break-ins with a shrug.

According to a new analysis, one out of five Web users still decides to leave the digital equivalent of a key under the doormat: they choose a simple, easily guessed password like “abc123,” “iloveyou” or even “password” to protect their data.

“I guess it’s just a genetic flaw in humans,” said Amichai Shulman, the chief technology officer at Imperva, which makes software for blocking hackers. “We’ve been following the same patterns since the 1990s.”

Mr. Shulman and his company examined a list of 32 million passwords that an unknown hacker stole last month from RockYou, a company that makes software for users of social networking sites like Facebook and MySpace. The list was briefly posted on the Web, and hackers and security researchers downloaded it. (RockYou, which had already been widely criticized for lax privacy practices, has advised its customers to change their passwords, as the hacker gained information about their e-mail accounts as well.)

The trove provided an unusually detailed window into computer users’ password habits. Typically, only government agencies like the F.B.I. or the National Security Agency have had access to such a large password list.

“This was the mother lode,” said Matt Weir, a doctoral candidate in the e-crimes and investigation technology lab at Florida State University, where researchers are also examining the data.

Imperva found that nearly 1 percent of the 32 million people it studied had used “123456” as a password. The second-most-popular password was “12345.” Others in the top 20 included “qwerty,” “abc123” and “princess.”

More disturbing, said Mr. Shulman, was that about 20 percent of people on the RockYou list picked from the same, relatively small pool of 5,000 passwords.

That suggests that hackers could easily break into many accounts just by trying the most common passwords. Because of the prevalence of fast computers and speedy networks, hackers can fire off thousands of password guesses per minute.

“We tend to think of password guessing as a very time-consuming attack in which I take each account and try a large number of name-and-password combinations,” Mr. Shulman said. “The reality is that you can be very effective by choosing a small number of common passwords.”

Some Web sites try to thwart the attackers by freezing an account for a certain period of time if too many incorrect passwords are typed. But experts say that the hackers simply learn to trick the system, by making guesses at an acceptable rate, for instance.

To improve security, some Web sites are forcing users to mix letters, numbers and even symbols in their passwords. Others, like Twitter, prevent people from picking common passwords.

Still, researchers say, social networking and entertainment Web sites often try to make life simpler for their users and are reluctant to put too many controls in place.

Even commercial sites like eBay must weigh the consequences of freezing accounts, since a hacker could, say, try to win an auction by freezing the accounts of other bidders.

Overusing simple passwords is not a new phenomenon. A similar survey examined computer passwords used in the mid-1990s and found that the most popular ones at that time were “12345,” “abc123” and “password.”

Why do so many people continue to choose easy-to-guess passwords, despite so many warnings about the risks?

Security experts suggest that we are simply overwhelmed by the sheer number of things we have to remember in this digital age.

“Nowadays, we have to keep probably 10 times as many passwords in our head as we did 10 years ago,” said Jeff Moss, who founded a popular hacking conference and is now on the Homeland Security Advisory Council. “Voice mail passwords, A.T.M. PINs and Internet passwords — it’s so hard to keep track of.”

In the idealized world championed by security specialists, people would have different passwords for every Web site they visit and store them in their head or, if absolutely necessary, on a piece of paper.

But bowing to the reality of our overcrowded brains, the experts suggest that everyone choose at least two different passwords — a complex one for Web sites were security is vital, such as banks and e-mail, and a simpler one for places where the stakes are lower, such as social networking and entertainment sites.

Mr. Moss relies on passwords at least 12 characters long, figuring that those make him a more difficult target than the millions of people who choose five- and six-character passwords.

“It’s like the joke where the hikers run into a bear in the forest, and the hiker that survives is the one who outruns his buddy,” Mr. Moss said. “You just want to run that bit faster.”

http://lifehacker.com/5445101/your-passwords-arent-as-secure-as-you-think-heres-how-to-fix-that?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed:+lifehacker/full+(Lifehacker)&utm_content=Google+Reader

Searching beyond 2009

I was reviewing the Google Zeitgeist page showing the top searches, patterns and trends of 2009.

zeit·geist | Pronunciation: ‘tsIt-“gIst, ‘zIt | Function: noun | Etymology: German, from Zeit (time) + Geist (spirit) | Date: 1884 | Meaning: the general intellectual, moral, and cultural climate of an era.

The information is interesting and enlightening, in that I, in no way follow any popular trends in the US. I must be fringe, or just don’t care that much about celebrity or movie/tv entertainment: 7 of top 10 Google News – Fastest Rising, 6 of top 10 Google.com – Fastest Rising, and 100% of Google Image Search top 10 are all such trends.

Google had dedicated trend pages for both Entertaining and Celebrity. If I dive deeper into these pages, I’m further aware that none of these celebrities are of interest to me except Michael Jackson and Les Paul. On the top ten TV and movies lists, I watch none of the TV shows (although that’s not a surprise as I don’t watch too much TV) and have only seen Star Trek and Avatar of the movie list. On the concert list, I’ve scene Blink 182 and U2 and don’t care to see them again, or the rest on that list.

One story I’m impressed made the list is the Missing Link as the finding of “Ida” in Germany further shows evidence of evolution of humans. Stories like this make me wonder how humans will evolve in another 47 million years (if we make it past the 2000s first).

Regarding Sports, Yankees, Steelers, Lakers, Red Wings, Roger Federer and of course Tiger Woods are all on top – no surprise for any. I am a little surprise that Coach K is the top and that the coaches list is dominated by American NFL Football and college basketball coaches. Lane Kiffin is well on his way to top the list of 2010 (and the one issue I’m on the side of Al Davis). Interesting too to see that Americans favor searching Chelsea football – the team I follow for now Arsenal is ranked 5th.

Here in New York, top searches seem to be all services except I’m quite shocked that Hale and Hearty topped Shake Shack in local food searches. Soup and salads over burgers? maybe New Yorkers are trying to get healthy on their own and DON’T NEED a salt ban (get it Bloomberg?).

The economy, healthcare (swine flu & universal health care), scandals (Bernie Madoff & Mark Sanford), bailouts (TARP & AIG) and disasters (tsunamis and earthquakes) all topped in the news for 2009 and will continue in some form into 2010. Haiti already starting the disaster trending again this year.

The Stooges – Search And Destroy
[audio:http://apt104.com/Aug%2009/iggy/12%20Search%20And%20Destroy.mp3]

photo365_2010_013
Traveling Smoker in front of 5th Ave Apple Store