We have all witnessed, especially this year, as one by one, major sites are compromised. Anyone using the same credentials for multiple significant parts of their online life does so at their own peril. PSAs aside, we can’t debunk the merits of federated authentication by suggesting password reuse. http://en.wikipedia.org/wiki/Federated_Identity_Management 4 weeks ago
Lacey Underall The problem for me isn’t the protocol so much as having all my data centralized on a server by a for-profit company. And the lack of choice. There is no reason to force me to use my Facebook login to access Spotify. If I choose to do so, that’s fine.
But I think there’s a valid point that the problem is more social than technical. last.fm provides a means where I can put my last listens or most played artists on a webpage or my sig on a board. But the data itself stays with last.fm.
If Rdio, twitter or whoever else just dropped a chunk of xml code that would provide most of the social functionality that Facebook offers, wouldn’t it?
Anyone could then design a front-end for me where I drag and drop different modules on a skinnable page.
I could then have one megapage and one ID, or several pages and/or several ID’s for different things. And then spawn out different pages/views depending on user same as any blog or forum software will let me do.
So while Diaspora is a neat idea, I don’t think we need to go that far. I think that most users don’t mind juggling a few different ID’s for Rdio and Twitter. If it bothers them, they can just use the same ID and password for all sites. I don’t recommend it, but hey– it’s your data and your choice of protection.
But most people just want to put all that stuff on a page to share. Facebook is in effect a very easy to use insta-blog. It just needs to be a data aggregator, rather than a data creator and centralized data storage. 4 weeks ago
David P while I highly doubt that I would be able to add anything remotely eloquent to this thread, I check it out nearly every day. I really like seeing the varied opinions. 4 weeks ago
Rhett C Sorry, for back-to-back posts, but I enjoy this discussion and I only make time for it every couple of days so I have to get it in now.
That speech in the video was pretty good, but I have some differences to air. Unlike the participants on this thread, we cannot expect the population of the Internet to be critical thinkers or interested in serious issues. They still deserve to get on the internet and share their interests, regardless if we think it’s trite drivel. LOLCATZ?! Zomg urdoingitwrong 😉 Google harder! If you turned off all the algorithms generating recommendations, you aren’t going to get certain groups of users to start caring about the world scene. We are all responsible for the choices we make about the content we consume.
Oh and I do fear that Diaspora’s pod ownership will bring out some of the worst sociopathic lurkers out there. C’mon the chance to manage the pod storing people’s photos and messages? “I’ll just take a peek… who’s gonna know?” That is an aspect that becomes much harder to regulate with distributed ownership. Open source does not make it safe, automatically. And, just to mention, hackers enjoy (and have some success) attacking open source projects and the mechanisms that are meant to keep shared code free from tampering. 4 weeks ago
Rhett C Diaspora is definitely neat. Since we’re very interested in protecting our data, I think you should be aware of the lack of client side encryption in Diaspora. The data travelling b/w those servers and your browser is fair game to all hops along the route. And I expect that anyone with a healthy respect for 1984 will be familiar with Carnivore and its implications for passing along unencrypted data. Also you can review the Diaspora wiki where a concerned developer mentions that China is known to hijack data, another potential scenario that would introduce risk to your data. https://github.com/diaspora/diaspora/wiki/Encryption
But that doesn’t have to be a deal breaker, of course, Facebook’s SSL options haven’t been around forever, and even encryption can’t provide absolute protection – try shutting off your computer if you want that.