Sure, but 10 attempts might well be enough to skim 50,000 accounts if you'd harvested, say, a million email addresses? I'm just suggesting that the percentage shot here may be harvesting through the mass stupidity of human-kind, rather than complex technology. I think it was Einstein who said that artificial intelligence was no match for natural stupidity! Just scan the top-10 of this list if you need proof http://www.whatsmypass.com/the-top-500-worst-passwords-of-all-time
On 7 Jan 2011, at 18:12, Bob Sneidar wrote: > I'm willing to bet that you will disable your account for a period of time if > you type in the wrong username/password 10 times. Every reputable web site > that requires security does this now to foil brute force bots. I cannot > believe Apple would overlook that issue. > > Bob > > > On Jan 7, 2011, at 10:00 AM, Keith Clarke wrote: > >> ...I still wonder whether this is evidence of Apple security being >> compromised (big problem for all) versus a simple numbers game exploiting >> user stupidity/laziness (more fool them). >> >> A web-crawler captures publicly listed email addresses, these then get >> tested as iTunes logins, coupled with the top-10 worst passwords. The >> surprising stat would be if there are merely 50,000 iTunes users that are >> that sufficiently stupid and/or lazy? >> >> There are probably more than 50,000 youtube videos showing monitors in the >> background that are covered in post-its with passwords and banking details! >> :-) >> > > > _______________________________________________ > use-livecode mailing list > use-livecode@lists.runrev.com > Please visit this url to subscribe, unsubscribe and manage your subscription > preferences: > http://lists.runrev.com/mailman/listinfo/use-livecode _______________________________________________ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
