Categories
Main Security Tips

Choose a good password

You’ve heard over and over the importance of choosing a good password, but we all seem to keep the same bad habits. Roger Grimes analyzed 34,000 real passwords and discovered some interesting trends:

  • As expected, English vowels are by far the most frequent occurring password symbols.
  • [In passwords with numbers,] the number 1 appeared 45 percent of the time, followed by the number 2 (22 percent.)
  • The exclamation point was the most commonly used non-alphanumeric character.
  • Words, colors, years, names, sports, hobbies, and music groups were very popular.
  • Other popular words include: angel, baby, boy, girl, big, monkey, me, and the.
  • Names of sports — golf, football, soccer, and so on — were as popular as professional sports teams and college team nicknames

Drawing on this study and other wisdom, here are some tips for choosing a good, secure password. Read #8 if you don’t read them all:

  1. Don’t write your password on a sticky note attached to your monitor (or “hidden” under your keyboard.)
  2. Don’t choose anything obvious like your birthday, spouse name, etc.
  3. Don’t choose any single word you can find in a dictionary.
  4. Don’t use the same password on a secure site (like your bank) as on an insecure site (like a mailing list.) If someone discovers your password because it was emailed to you from an insecure site, you don’t want your bank account to be vulnerable. Ideally you’d keep a different password for each site.
  5. If a digit is required in your password, don’t simply append a “1” or a “2”. If a symbol is required, don’t simply append an exclamation point.
  6. Learn which channels are secure and which are not. Generally HTTP, FTP, and VNC are not secure, while HTTPS, and SSH are secure. Don’t use secure passwords on insecure channels. (Look for the padlock in your browser.)
  7. Pick a password you can remember, so you won’t have to write it down.
  8. Pick a LONGER password. Think of a phrase or sentence or haiku, not a word. Password length is more important than symbols or numbers. For a security expert like Mr. Grimes, a 6-9 character password with “complexity” (symbols, numbers) is fairly easy to break, while a password with 15+ characters is almost impossible to break.

Eventually, we may be using our fingerprints or some other biometric procedure, but until then, choose a good password.

Categories
Blogging Mac Main

5 ingredients for a do-it-yourself podcast

At work I’m the “producer” of a podcast, and here are the tools we use:

1. Apple Garageband — Found on every Mac, this free app makes it easy to record and combine tracks, add effects and art, and create podcasts.

2. Logitech USB Headset — This isn’t a professional mike, but it works fine for us and it’s comfortable to wear and use.

3. WordPress — The best open source blogging platform. You’ll need web hosting and your own domain to install this.

4. PodPress — A powerful WordPress plugin that turns your blog into a podcasting platform. This plugin takes care of all the nitty gritty (podcast enclosures), offers an embedded Flash player for easy listening, and provides stats.

5. Mime Config — If you plan to publish “enhanced” podcasts for iTunes, chances are your server isn’t configured to recognize the “m4a” format. Install this WordPress plugin and add the mime type “m4a = audio/mpeg”.

What other tools are you using for creating podcasts?

Categories
Apple Main

Mining iTunes for podcast listenership data

For podcasters and their advertisers, tracking the size of a podcast’s audience is sticky. You can track how many people download a podcast, but who knows if they actually listened to it?

iTunes is the #1 podcasting client (57% market share last year), and additional podcatchers push podcasts into iTunes, so much of the data about podcast listenership can be found in iTunes. Advertisers just need a way to get to it.

I recently commented to Phil Windley that perhaps the iTunes XML file could be mined for listenership data. iTunes exports an XML file that contains a rating, play count, last played date, and last skip date for every song and podcast. This would be extremely valuable information for advertisers.

Phil connected me with Doug Kaye, the creator of IT Conversations, who is now exploring a way to automate the flow of this valuable iTunes information back to podcasters. After seeing the architecture he created with Amazon.com web services, I believe if anybody can do this, Doug can.

Categories
Main Politics Tech Utah

Seven ways the Internet is changing politics

1. Last week I attended the opening event of Phil Burns’s new company Politic2.0, a platform for communication between politicians and citizens. When I first heard about the event, I was skeptical that it would be anything more than the buzz-word-ification of another niche, but by the end of the event I was really impressed with what had happened.

Utah Congressman Chris Cannon was the guest of honor, and there were about 25 attendees. The website allowed us to post and vote on questions, Digg style, and then the MC addressed the most popular questions to Mr. Cannon. Participation wasn’t limited to people in the room; anybody online could submit questions, vote, and leave comments on the website. Live video was streamed to the website.

It was a Darwinian press conference. The most popular questions were asked; no one person could dominate the conversation with his own agenda. Mr. Cannon said he felt a disconnect because most of our heads were down while we typed and clicked, but because I was able to influence the conversation, I felt very connected. I liked it so much I contacted a couple friends so they could hop on the website during the event.

The process still needs polishing, but Mr. Cannon’s participation was commendable and it was a good first draft for Politic2.0. I hope other politicians will participate.

Pete Ashdown

2. The Politic2.0 platform allowed us to collaborate on our questions, but not on the answers. When Pete Ashdown ran for U.S. Senate last year, he used a wiki to allow citizens to collaborate on policy solutions. I personally edited a page or two and found it refreshing that the ideas were being debated on their own merits and that someone (Pete) cared to listen. It’s humbling and realistic for politicians to realize they don’t have all the answers. Maybe together we do.

3. IT Conversations is my favorite source for podcasts. This week its founder, Doug Kaye, launched PodCorps (via), which aims to “record and publish important spoken-word events anywhere in the world.” PodCorps will call on an army of volunteers to record lectures, political events, and talks in their local communities. These amateur recordings by you and me will be posted online for all to hear. What would otherwise be some inconsequential talk on an obscure topic in a far away place will find far more listeners. Politicians can’t pander to local interests if everyone is “watching.” The transparency will encourage consistency.

4. C-Span, the nonprofit cable network that records Senate and House proceedings (and for most people is the fastest way to fall asleep), keeps ownership of over 85% of its video — video that should be in the public domain. Carl Malamud, the creator of the first Internet radio station, recently wrote a letter to C-Span petitioning that all its video be released into the public domain and explaining how the Internet makes their mission of promoting open government even easier.

5. Phil Windley has blogged repeatedly about the Utah Senate Majority’s website, senatesite.com. At the site Utahns will find a group blog and podcast where local politicians explain and debate policy.

6. Mitt Romney and other presidential candidates are using YouTube to engage with citizens. Mitt Romney on Youtube In a YouTube video, Mitt asked people “What is America’s single greatest challenge?” Seventy-one people responded with short videos of their own.

7. Candidates are using Facebook and MySpace to stay connected with supporters. Because of Facebook, I know Mitt is in Iowa today.

Anything else?

As our world becomes more complex and the job of politician more difficult, it’s increasingly important that we be closely connected with the people that represent us.

Categories
Main

Elder Scott recommends reading President Hinckley’s prayer

We Mormons hold a “General Conference” every six months. Many church members come to Salt Lake City from around the world to hear inspiring talks by Church leaders. Most church members watch the proceedings of the Conference on TV, by satellite in distant countries, or on the Internet.

In the last General Conference, which occurred one week ago, Elder Richard G. Scott spoke about prayer, mentioning President Hinckley’s prayer at the conclusion of the October 2001 General Conference as an example of effective and sincere prayer.

I have learned much about prayer by listening to President Hinckley offer supplications in our meetings. You can also learn from him by carefully studying the exceptional public prayer he offered at the conclusion of the October 2001 conference for Father’s children throughout the world. He prayed from his heart, not from a prepared manuscript.

Study that prayer, and you will find that there are no vain repetitions, no posturing to impress others, as sometimes occurs. He combines simple words eloquently. He prays as a humble, trusting son who knows well his beloved Father in Heaven. He confides in the certainty that His answer will come when most needed. Each prayer is tailored to its purpose, with a clear statement of what needs resolution, as well as ample expression of gratitude for specific, recognized blessings. His spontaneous prayers are like crafted gems, a silent witness to the fundamental place prayer has occupied in his life for many, many years. (Elder Richard G. Scott, “Using the Supernal Gift of Prayer”)

Here is the text of the prayer to which Elder Scott referred. This was one month after the September 11th attack.

O God, our Eternal Father, Thou great Judge of the Nations, Thou who art the governor of the universe, Thou who art our Father and our God, whose children we are, we look to Thee in faith in this dark and solemn time. Please, dear Father, bless us with faith. Bless us with love. Bless us with charity in our hearts. Bless us with a spirit of perseverance to root out the terrible evils that are in this world. Give protection and guidance to those who are engaged actively in carrying forth the things of battle. Bless them; preserve their lives; save them from harm and evil. Hear the prayers of their loved ones for their safety. We pray for the great democracies of the earth which Thou hast overseen in creating their governments, where peace and liberty and democratic processes obtain.

O Father, look with mercy upon this, our own nation, and its friends in this time of need. Spare us and help us to walk with faith ever in Thee and ever in Thy Beloved Son, on whose mercy we count and to whom we look as our Savior and our Lord. Bless the cause of peace and bring it quickly to us again, we humbly plead with Thee, asking that Thou wilt forgive our arrogance, pass by our sins, be kind and gracious to us, and cause our hearts to turn with love toward Thee. We humbly pray in the name of Him who loves us all, even the Lord Jesus Christ, our Redeemer and our Savior, amen. (President Gordon B. Hinckley, “Till We Meet Again”)