The small child I own was complaining about passwords. I think his issue is the home PC only gives him 30 minutes a day weekdays, and to get any more time he has to talk to me. He thinks we should all have the same password, like one of his friends

I tried to explain to him the difference between "to own" and "to 0wn", but apart from the spelling, it seemed to go beyond him. Need to work on that, even though there is a risk he will discover privilege escalation attacks before he's ten

On the topic of security, BBC newsnight in a hour promises a ten minute special on Chip and Pin being broken, based on work from cambridge.

This is profound. You can do a Man in the Middle attack in which a stolen Chip and Pin card thinks you are doing signature authentication -and doesn't bother with the Pin auth, while the bank thinks you are doing full pin auth, which is what will show up on your bank statement, after which the bank will assume you are lying when you said it wasn't you

I lost my cards last year, two days before ApacheCon, didn't notice for 12 hours. Amex got me a new card fast, my bank, not for a week. But at least with Chip and Pin I wasn't too worried about the cards -indeed, someone handed in the now cash-less wallet to the police. Now, any stolen card that hasn't been locked is effectively wide open, and any bank account attached to it.

Given the infrastructure investments, I wonder how it's going to be handled. Denial is the cheapest option, I expect that first. Then there's blame the messenger...