Millions of KaZaa users share their private info...duh - P2P-Zone

napho · 06-06-02, 09:08 AM

No kidding. We didn't need a study to know that.

"We have just finished a study that shows how user interface design flaws allow users on Kazaa to share their personal files without their knowledge. In a laboratory user study, only 2 out of 12 subjects were able to correctly determine that Kazaa was sharing their entire hard drive. We looked at the current Kazaa network and discovered that many users are sharing personal information such as email and data for financial programs such as Microsoft Money. To see if other users on Kazaa were aware of this and taking advantage of users ignorance, we ran a Kazaa client for 24 hours with dummy personal files. During this time, files named "Inbox.dbx" and "Credit Cards.xls" were downloaded from our client by several unique users.

This is pdf http://www.hpl.hp.com/shl/papers/kaz...aUsability.pdf

JackSpratts · 06-06-02, 09:38 AM

nothing new to members of napsterites. but seriously, pcs are so complicated that many of those files can't be found by users on thier own machines to begin with, so maybe kazaa is providing a much needed service after all.

i can see the ims' now - "yo dude, i forgot my credit card password - can you find it for me while you're downloading my 'attack of the clones'? thanks."

-js.

butterfly_kisses · 14-06-02, 11:18 AM

Quote:

Originally posted by JackSpratts
nothing new to members of napsterites. but seriously, pcs are so complicated that many of those files can't be found by users on thier own machines to begin with, so maybe kazaa is providing a much needed service after all. i can see the ims' now - "yo dude, i forgot my credit card password - can you find it for me while you're downloading my 'attack of the clones'? thanks."

-js.

lol

Mowzer · 14-06-02, 12:31 PM

Download a few .dbx files from Kazaa.

Its quite neat to see. Doing a search for inbox.dbx or outbox.dbx will give you more then a few results.

Only click the ones that are the biggest in file size, as they are more likely to hold more emails.

Then snap it into your outlook express and its just like your looking at the persons email box.

Again, I blame this error on KaZaA. For that they should be castrated. Just because people are dumb doesnt mean companies cant take the time to secure products them selves.

.dbx is one file type among others that should be filtered from KaZaA from the start. When some one points out a weak spot, the company needs to make a fix.

KaZaA it seems is concentrating on coding more spyware and adware. Not patches.
The lax stance is not funny anymore on sharmans part.

When microsoft does this, ppl are all over them. The most intresting inbox, was a RCMP officers. Investigation reports and all.

06-06-02, 09:08 AM	#1
napho Dawn's private genie Join Date: May 2001 Location: the Canadian wasteland Posts: 4,461	Millions of KaZaa users share their private info...duh No kidding. We didn't need a study to know that. "We have just finished a study that shows how user interface design flaws allow users on Kazaa to share their personal files without their knowledge. In a laboratory user study, only 2 out of 12 subjects were able to correctly determine that Kazaa was sharing their entire hard drive. We looked at the current Kazaa network and discovered that many users are sharing personal information such as email and data for financial programs such as Microsoft Money. To see if other users on Kazaa were aware of this and taking advantage of users ignorance, we ran a Kazaa client for 24 hours with dummy personal files. During this time, files named "Inbox.dbx" and "Credit Cards.xls" were downloaded from our client by several unique users. This is pdf http://www.hpl.hp.com/shl/papers/kaz...aUsability.pdf

14-06-02, 12:31 PM	#4
Mowzer ' Join Date: Jan 2002 Posts: 209	Download a few .dbx files from Kazaa. Its quite neat to see. Doing a search for inbox.dbx or outbox.dbx will give you more then a few results. Only click the ones that are the biggest in file size, as they are more likely to hold more emails. Then snap it into your outlook express and its just like your looking at the persons email box. Again, I blame this error on KaZaA. For that they should be castrated. Just because people are dumb doesnt mean companies cant take the time to secure products them selves. .dbx is one file type among others that should be filtered from KaZaA from the start. When some one points out a weak spot, the company needs to make a fix. KaZaA it seems is concentrating on coding more spyware and adware. Not patches. The lax stance is not funny anymore on sharmans part. When microsoft does this, ppl are all over them. The most intresting inbox, was a RCMP officers. Investigation reports and all. Last edited by Mowzer : 14-06-02 at 01:19 PM.

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

06-06-02, 09:38 AM	#2
JackSpratts Join Date: May 2001 Location: New England Posts: 10,018	nothing new to members of napsterites. but seriously, pcs are so complicated that many of those files can't be found by users on thier own machines to begin with, so maybe kazaa is providing a much needed service after all. i can see the ims' now - "yo dude, i forgot my credit card password - can you find it for me while you're downloading my 'attack of the clones'? thanks." -js.