Name: 信頼 - CS50ポッドキャスト、Ep.1 (Trust - CS50 Podcast, Ep. 1)
Uploaded: 2021-01-14T10:19:24.000Z
Duration: 39 min 21 s
Description: VoiceTubeの動画で発音を聞きながら英語表現を覚えよう！学べる英語：

This is the CS50 podcast, and my name is David Malan.

COLTON OGDEN: And my name is Colton Ogden.

DAVID MALAN: And so glad to have everyone back with us today

for our second ever episode of the CS50 podcast.

I walked in to your office just before this podcast started,

DAVID MALAN: You couldn't have asked that before we started rolling?

COLTON OGDEN: You seemed a little bit disgruntled.

And in fact, ever since our discussion thereof,

and since the last week's Tonight Show with John Oliver started

focusing on this topic, I have legitimately

started getting more and more of these calls.

And then you pick up and there's a very cheery computer

COLTON OGDEN: You know, actually, I had to block a number,

because I was actually getting called consistently.

DAVID MALAN: I'm sorry I'll call you less.

COLTON OGDEN: I got called everywhere every five to 10 seconds.

The same phone number was calling me after I called.

Well, I mean the nice thing about iPhone is that you can actually

And I'm guessing you can do the same on Android.

But landlines from yesteryear, you're pretty much out of luck

unless you punch in some code with your phone provider to do it as well.

COLTON OGDEN: Yeah you can bet that actor got blocked.

DAVID MALAN: You know it's really obnoxious too.

Because most of the spam calls I get nowadays, like in the past week

are 617- 555- something, something, something, something.

Where 617- 555- matches my own phone number's prefix.

And I think the presumption is, and I think

John Oliver might have pointed this out, that they're

trying to trick you sort of social engineering-wise into thinking like,

oh, this must be a neighbor down the road

because their phone number is so similar.

COLTON OGDEN: I don't think I ever got a call from anybody

in my life who is a legitimate actor who had the same prefix to my phone number.

DAVID MALAN: Yeah that's a good point actually.

I don't even notice, frankly, because it comes up sometimes

Well, sort of a tie back into actually the last podcast episode,

And they're sort of storing unhashed passwords out in the clear.

It looks like recently they committed another sort of offense

where they were actually asking people for their email passwords.

Not a Facebook password, but their actual external email passwords

I read this, and I think they were trying to do this for well-intentioned,

at least we can perhaps give them the benefit of the doubt, in that they

wanted people to be able to confirm that some email address was

And I presume some developer thought, well,

it'll be easy if we just ask them for their username, their password,

pretend to log into that actual system on the user's behalf,

and if they get in successfully, hopefully just

And just assume that the address is indeed theirs.

But this is just so unnecessary and so wrong on multiple levels.

I mean this is why companies actually instead send

you an email, usually with a special number, or word in it,

Well if we send you an email, and you are

able to click on that email within 15 minutes,

presumably you do indeed know the username and password to that email.

And so therefore you are indeed who you say you are.

That's sort of the right, or at least the industry standard way

You might have to hit refresh a few times.

But that's secure, because you're not asking the user

This is just reckless, especially for a company

as big as Facebook to be conditioning people into thinking this is OK.

DAVID MALAN: I think letting big entities

like this act on our behalf in the security realm.

I mean, especially Facebook given that they've recently been

Putting my email password in Facebook's hands,

I don't know where that's going to end up at the end of the day.

字幕リスト動画再生

信頼 - CS50ポッドキャスト、Ep.1 (Trust - CS50 Podcast, Ep. 1)

episode

sort

essentially

pretend