It has to be said, this talk from Barry Schwartz is one of the most worthwhile things to come out of this years TED that I have seen so far. It is all about how rules and regulation and fear are stopping development on so many levels. He makes the case for wisdom to be allowed to flourish and it is something many people need to see. In case the video below doesn’t work or for those who would like more information about this talk, you can find it here too: http://www.ted.com/talks/view/id/462
Statistics on passwords are rare things. Anyone with the tiniest clue about computer security knows that passwords should be stored in some encrypted form to ensure that if someone did break into your system they couldn’t just read everyone’s passwords. Clearly the world is not just full of smart people so when a largish website got hacked a little while back and its passwords were found to be in plain text the result was inevitable, they got released to the public.
Here is an article with some details on some of the statistics drawn from said publicly released passwords. There are some odd ones in there and some slightly scary ones. http://www.physorg.com/news153650514.html
However, the story doesn’t end there. You see, I happen to be part of a big site that stores it’s passwords in this painfully bad plain text way. I also happen to be fairly high up there and have at times helped out with the codebase and database. In fact, I still had an old database backup kicking around which I hadn’t got round to removing. Now Physorg had 28,000 passwords to look at. I on the other hand have over 130,000! Suffice to say, this is probably more passwords than almost anyone else in the world can get hold of due to most sites default security.
Of course with a resource like that I couldn’t help but do a little statistical analysis. Here is a list of the most popular passwords along with the number of times each was used in the 130,000 people.
| Password | Count |
| 88u6755r34 | 1367 |
| 123456 | 1269 |
| password | 836 |
| mchs2005 | 471 |
| 12345678 | 390 |
| Allahakbar | 284 |
| 12345 | 357 |
| humyhumy | 356 |
| catsca | 336 |
| binky | 321 |
| junior | 315 |
| 123456789 | 301 |
| tree777 | 295 |
| brolly | 259 |
| dolphin | 237 |
| aaaaa | 233 |
| liverpool | 231 |
| qwerty | 226 |
| compaq | 207 |
| princess | 200 |
| vagina | 185 |
| mj8jr2 | 183 |
| iloveyou | 173 |
| 111111 | 155 |
| 82308230 | 152 |
| hello | 149 |
| music000 | 145 |
| whatever | 131 |
| class3kill | 126 |
| monkey | 126 |
The first thing that strikes me about these results is the number one password is a very very odd one. In fact, my guess for some of the more random results at the top is they are due to spammers. The site this data comes from has issues with several members making loads and loads of fake accounts.In fact, I have passed this data onto the site owner as a possible way of identifying this person more accurately.
Next we have the string “123456”. This password makes up almost 1% of results. This is a huge number and actually pretty scary really if you think about it. What is even more scary is that if you take the numbers 1 to 9 and 10 as a string (aka, 1, 12, 123, 1234, 12345, 123456, 1234567, 12345678, 123456789, 12345678910) you end up covering almost 2% of all the passwords.
I also find it a bit of a worry when we have things like “password” and “qwerty” appearing high up the list too.
The other thing i noticed from this data is the number of real world words appearing. By this I mean things susceptible to a dictionary attack.
I thought by now, especially teens (which is who this is data is from) would know what is and what isn’t a good password. Ideally it should be something unrelated to you (so not your date of birth!), something not in the dictionary, contain at least a mix of letters and numbers and if at all possible, be a miss spelling with random capitalization. So, something like gU1t4 for guitar, or how about pU2z1e for puzzle. It should be something that you find easy to remember or work out. car number plates are good, but don’t use your current one. old phone numbers, maybe with letters in the place of some numbers.
Failing that, use something like Keepass. It stores login details including passwords and locks them all under one master password that you should never write down.
has been sewing this evening… and analysing passwords… of course
is going to spend valentines day at a model show… model boats, planes and cars, not the walking round ones like some thought…
wonders is Facebook is broken for everyone else? Infinite redirect loop viewing images and being logged out every few hours…
As someone who normally works on a screen that technically has a ratio of 30:8 I am all for widescreen. I think the terrestrial move from 4:3 to 16:9 was great idea. I also love seeing films in full 21:9 at the cinema. If feels much more involved when you watch something that is going that far beyond the old square screens we were once used to. There is only one problem with films at 21:9, all the widescreen TV’s we have are 16:9. In fact, resolutions that we have come to know and love for their quality such as 1080p are still only 16:9 despite films being shot in 21:9.
Finally it seems someone has decided to address this annoyance. Phillips have stepped up to the plate with the first 21:9 TV for public consumption. Great you think, wouldn’t it be nice to get rid of those black bars top and bottom of the screen when watching films. Well, good news, Phillips don’t like black bars either, bad news they don’t like them a bit too much.
Phillips in their infinite wisdom have decided that wider content is better, even if that content was not meant to be wide in the first place. So, when the TV gets given 4:3 content, it stretches it to 16:9 and when it gets 16:9 (so normal TV) it stretches it to 21:9. This of course makes everyone look a bit more squat than they should. In fact, it makes everything look a bit squat.
This in my opinion is just plain mad. Why would someone who loves watching films etc want something that distorts almost every other bit of content they give it. Now this issue came up in an interview with Phillips on the BBC’s Click programme. Phillips response is they think people will want more immersive content more. Unfortunately the interviewer never pushed the issue, and in my opinion they should have. Phillips are bringing out a nice bit of kit that is actually something new in the TV market, and then they are completely breaking it with the software they are putting on it.
forgot to mention he is home now… *sobs*
Why can’t people just say what they mean?
So I left Cornwall yesterday afternoon knowing full well this was almost certainly going to be a bad day for travelling. I mean, have you seen the weather of late? Actually, I ask because I haven’t. Cornwall has been fairly well shielded from most of it. Devon on the other hand had up to 55cm the other night. Suffice to say I assumed my travel problems would be there.
How wrong could I have been? Sailed through Devon without a hitch, In fact, sailed all the way to Paddington station without a hitch. Slowed a little in places, but for the most part it was a fairly boring journey I spent watching the rest of the firefly TV series on my laptop.
The trouble all started just as we were coming into London. The announcer on the train told us that we had made good time and were in on time and that to add to our good fortune all the underground lines were running just fine too. Well that’s handy, maybe I can get an earlier train than the hour later one suggested to me.
Yeah, as if things could go that well! As I go out the main station and into the underground I can’t help but notice a lot of lost looking people, even for a big tourist place like Paddington. Turns out the circle line was shut down, the whole thing! Well, that’s handy. Thinking cap on, I know, District line down to Earl’s Court, then District along to Victoria. OK, sorted. At Earl’s court I am met with about 3 times the number of people that station can handle and a train that claims Victoria isn’t on the District line. Quick look at my map and I’m still right thankfully. Find a train that claims to be going to Victoria, get on that, they announce all stations. It is pretty packed, not much room to move. We rattle through the stations one by one until we get to Sloane Square (the one before Victoria) and then they decide our next stop will be St James’s Park. Oh come on guys, no, not again. You see, several years ago I was on a train to Victoria when they decided it was closed (twice) and we sailed through it. This time I had already given up and just stood there waiting to sail through. Thankfully, little luck on my side and we actually stopped there this time.
All in all, I love the underground. That is not to say it is without faults. I have been on much cleaner; better, easier to understand systems in other parts of the world, but none of them have quite that character. Maybe it is the little mistakes from time to time that make me like it so much, even if it does cause me to almost miss my trains from time to time…
would like to explain to the announcer that no circle line is not the same as all tubes running fine! Roll on the District!
wishes, even if he has to leave Cornwall that aleast the train would stop so he can play in the snow… so much snow…
has never heard Demelza laugh so much…
has so many things to do, so little time… go away time, give me a break!
is not impressed with Cornwalls lack of snow!
is cold and sleepy from meeting too many people and a party…
is ready for a party