Category: Technology

I wrote a blog this morning about how Josh had used Facebook to learn more about the Yahoo attrition.  While I was writing that, he must have been busy writing his public apology titled, “How to lose fans and (falsely) influence people“.  Turns out not only did Facebook burn it’s users, but it burned him too.  Due to Facebook’s aggressive advertising, he accidentally put pictures of people that *currently work at Yahoo* onto ads which read, “Leaving Yahoo!”.  Of course, there is no indication that these poor folks had any intention of leaving.  Yikes!  Not only is that a gaffe, that’s just plain wrong!

None of this is Josh’s fault.  This is Facebook’s broken platform.

Late last year, I stopped using Facebook when I witnessed them giving my personal information to advertisers.

The clever advertiser, Josh Koppelman, has exploited that data again to gain insight into potential employee turnover due to the MicroHoo possibility.  The data is not statistically accurate, but it is definitely an interesting indicator.

My desktop computer at home for years has had an Antec True 380W Power Supply.  It’s worked well and I’ve never had any problems.  Recently, I became interested in 80plus Power Supplies, and wondered if I could save significantly with one.  I found that Antec is now producing a 80plus version of the same power supply I already had, so this made for a perfect comparison.  Last week, I upgraded to the Antec Earthwatts 380W Power Supply!

SilentPCReviews has a great review of the Antec True Power Supply.  Their tests show that it’s efficiency is somewhere between 65-68% for the loads my machine is currently using.  According to the 80plus report for the Antec Earthwatts, it is ~82% efficient.  Given that, I expected to see about a 20% improvement.

To measure, I bought myself a great tool, called the Kill-A-Watt.  I highly recommend you get one if you don’t have one already.  It cost about $23, and it’s been great for hyper-analyzing every appliance in the house. 

I then ran some basic tests and here is are the measurements  that my computer used at idle and peak loads:

You know you’re a geek when you decide to upgrade your Linksys Router from it’s standard OS to a linux kernel.  But, I just did that- and my router now runs DD-WRT.

The instructions to upgrade my WRT54Gv5.0 worked like a champ!

Given that it’s only been up for a few hours, it’s too early to tell if it is any better.  The administration console is definitely more advanced and a bit better for me, so I do like that.  Also, there is this setting to supposedly increase the power for the router’s signal.  I’m hoping that will increase connectivity range; but so far, the tests are inconclusive.

Definitely cool, however.

News from the small world department:

I met a guy today that I had interviewed some time back.  I didn’t remember him; but he remembered me (indicating that it’s clearly more stressful to be interviewed than to do an interview!).  Anyway, turns out I had given him my interview question.  He liked it so much he had asked it when doing interviews later.  Nice! I guess it’s not a bad question 🙂

I recently discovered Prosper – a “peer to peer” lending system.  I instantly loved the idea – that you could connect lenders and borrowers via the web with low overhead and create a new market.  I spent a lot of time researching it, and came to the brink of lending my own money on Prosper.  Unfortunately, I’ve discovered that it doesn’t actually work.

The Basics

The basic idea is that Prosper offers 3yr, unsecured loans to individuals.  If you sign up as a borrower, your credit report is drawn, you create a listing on the site for why you need the loan, and lenders bid on your loan.  Potential lenders also sign up on the site, browse through would-be borrowers, ask questions, review credit history, and lend to those loans that appear to be good investments.   Prosper provides great analytics about expected ROI for different types of borrowers.  Prosper makes this data available, you can even use it offline to crunch your own numbers.  Overall, the site is very well designed, has a great set of features, and even community groups to help users work together.

For the potential lender, you’ll get paid back monthly, Prosper takes a 0.5-1.5% fee, and you can earn interest competitive with unsecured lending rates from banks.  For lower-risk loans, this is currently 10-12% annually.  Of course, if borrowers default or don’t pay, it will get sent off to collections, and you’ll be out of the money.  Prosper recommends diversification to avoid risk, which means instead of lending $500 to 1 person, you loan $50 to 10 people.  If one defaults, you’re only out 10% of your cash.

Overall, its a cool idea!  But does it work?

The Data

It’s hard to determine conclusively if the system works.  But after analyzing it, I believe it does not.  Unfortunately, Prosper tends to generate significantly larger default rates than you’d expect – even among borrowers with supposedly AA credit ratings.  I used Prosper’s own performance search tools to conclude this.  There aren’t any matured loans to measure on Prosper (since Prosper is less than 3 yrs old).  So instead I measured loans originated between June’05 and Jan’07.  Among AA borrowers, the average default rate was 3.35%.  This is extremely high; Prosper’s “lending tips” video that they use to introduce lenders to the system says, “based on historical loan performance data for similar credit, AA borrowers have a less than 1% annualized rate of default.”  (The video shows “0.2%”, while the audio says, “less than 1.0%”).   Either way, even if that is true, it’s far away from what Prosper lenders are seeing today.

For further proof, I checked the Prosper discussion groups.  It took a bit of searching, but alas I did find a thread titled, “Are oldtimers still actively bidding and lending?”  Here, several long-time users confess that they have stopped using Prosper for exactly the reason mentioned above – excessive default rates.  The responses were almost all negative, with conclusions such as, “The only way I would ever make another bid [to loan money] is if I knew the borrower personally” and “I’m discouraged about how many people seem to have had no intention of ever repaying”.

Lastly, LendingStats is a great 3rd party website for visualizing lending data on Prosper.  It’s clear that some long term borrowers are making very low returns (1%!), that the delinquency rate in several states (such as Texas) exceeds the average rate of return, and if you consider the largest 10 lenders, none has an ROI greater than 7.86%, with the worst having a -18% ROI. 

It is also clear that loans are more likely to default in the later period of the loan; this makes sense – as a borrower who could afford a loan in 2006 could have faced significant changes in life to make it hard to afford the loan 2-3 years later.  One Prosper user writes, “the problem is that the late payments and defaults seem to be accelerating over time.  It almost seems exponential.”

Other Problems

There are a few other issues with Prosper as well.  One old timer wrote that Prosper is just too time consuming.  This is personal choice, of course, but one which I share.  Research and work is the key to all good investing.  Research on Prosper, despite Prosper’s awesome web site and tools, is time consuming.  Advanced users use automated programs to decide which loans to bid on.  This seems like a good approach, but again, requires lots of research and time to figure out what the right “model” is for investing. 

Collections is also a problem.  As you’d expect, collections is done via a collection agency, hired by Prosper.  The incentives for collecting unpaid debt seem out of place here.  Because the lender for a single $5000 loan may be 100 small-time investors with only $50 at stake each, who is really making sure that collections is dealt with optimally?  No single individual has enough at stake to really audit the process.

Finally, I think human nature is the biggest problem with Prosper.  Understanding whether a borrower is responsible for a loan is a tricky thing to do.  Now try to do that without ever meeting the person, and with the anonymity of only having their “alias”. It’s no wonder that a borrower feels less obligation to pay Internet debt than traditional debt.  And you can bet that the defaulters always have ‘real world’ debt in addition to their Prosper debt.

Conclusion

I hadn’t planned to invest more than toy-money in Prosper.  But I’m glad I kept researching instead of just diving in.  It looks to me like Prosper will return your money at best (after 3yrs), and lose a little money at worst.  It’s too bad, because it’s really a neat idea; except that it doesn’t actually work!

UAC, the impetus behind the famous Mac commercials, and the biggest frustration in Vista does have some reasoning behind it.  One is that Microsoft wanted to allow non-techies to be able to use their computers without having admin rights.  This is generally good.  Techies that complain about UAC aren’t complaining just because of an extra step in getting a job done.  They’re complaining because UAC is so annoyingly stupid:

  – If you right-click on an item on the start menu and select “Run as Administrator”.  It then prompts, “Cancel/Continue?”.  It’s like when you asked your Mom for a glass of water and she replies, “I can’t hear you”, and you then had to reply, “May I have a glass of water, please?”

  – Similarly, typing “regedit” at the command line forces the prompt.  I specifically typed 7 characters and pressed return, does another mouse click really help?

Of course, the Microsoft engineers aren’t dumb, they did this on purpose; and the reason is usually misunderstood by those writing about UAC.  Notice that when you are prompted for the privilege elevation, the entire screen dims, and the only window usable is the security prompt?  Jesper, like many others, writes that UAC has nothing to do with malware.  But this is not true!  The elevation prompt screen is in a locked-down UI state; non-privileged programs are denied access to the UI at this time.  This prevents a virus from moving your mouse to administrative programs or from typing “regedit” at your administrative prompts.  It also prevents a trojan from displaying a dialog that *looks* like the UAC screen and getting you to type your password into it.  This is why ItsVista noted that they couldn’t issue a print screen command on the elevation prompt.  The malware countermeasures of UAC are much better described in this article from Microsoft.

Contributing to the confusion about UAC is that Microsoft employees have watered down the feature by implying that it’s not a security feature;  Mark Russinovich writes,

“Because elevations and ILs don’t define a security boundary, potential avenues of attack , regardless of ease or scope, are not security bugs.”

I suspect this is lawyer talk; I don’t really understand it.  To claim that all this good work isn’t security either means that you know there is a big hole in it (possible), or that a lawyer said not to describe it as a security feature so you don’t get sued. Jim Allchin likewise had some watered down comments about UAC here. Both claim that the only ‘secure’ way to prompt is to use Ctrl-Alt-Del.  They are probably right.  Windows has the fundamental security flaw that it allows one process to see the keystrokes and mouse events destined for another.  This design flaw (also a flaw in many other windowing systems),  is ultimately the reason we have UAC today.