nanog mailing list archives

Re: LinkedIn password database compromised

From: Christopher Morrow <morrowc.lists () gmail com>
Date: Thu, 7 Jun 2012 13:09:48 -0400

On Thu, Jun 7, 2012 at 1:03 PM, Randy Bush <randy () psg com> wrote:

hi etaoin,

I still don't want single sign on.  Not anywhere.


i believe that 'single sign on' is a bad deal and dangerous for all, not
just we geeks.  essentially it means that the 'identiry provider' owns
your identity.  i love that they call themselves 'identity providers'
when it is MY fracking identity and they are reselling it.


so... now that this can is open, has anyone looked at:
  <http://www.oneid.com/>

they seem to have some interesting options for better authentication.

the 'single sign on' i encourage for the end using human beings i
support is 1password and its ilk.  it provides the user with one sign-on
yet strongly encourages separation of identities and strong passwords
for sites.


the oneid people would say: "it is still a shared secret"

-chris

Current thread:

Re: LinkedIn password database compromised, (continued)
- - - Re: LinkedIn password database compromised jeff murphy (Jun 07)
    - RE: LinkedIn password database compromised Matthew Huff (Jun 07)
    - Re: LinkedIn password database compromised Jared Mauch (Jun 07)
    - Re: LinkedIn password database compromised Aaron C. de Bruyn (Jun 07)
    - RE: LinkedIn password database compromised Bruch, Mark (Jun 07)
    - Re: LinkedIn password database compromised Owen DeLong (Jun 07)
    - Re: LinkedIn password database compromised Jay Mitchell (Jun 08)
    - Re: LinkedIn password database compromised Marshall Eubanks (Jun 07)
    - Re: LinkedIn password database compromised Lynda (Jun 07)
    - Re: LinkedIn password database compromised Randy Bush (Jun 07)
    - Re: LinkedIn password database compromised Christopher Morrow (Jun 07)
    - Re: LinkedIn password database compromised Randy Bush (Jun 07)
    - Re: LinkedIn password database compromised Tei (Jun 07)
    - Re: LinkedIn password database compromised Marshall Eubanks (Jun 07)
    - Re: LinkedIn password database compromised valdis . kletnieks (Jun 07)
    - Re: LinkedIn password database compromised Christopher Morrow (Jun 07)
    - Re: LinkedIn password database compromised Randy Bush (Jun 07)
    - Re: LinkedIn password database compromised Owen DeLong (Jun 07)
    - Re: LinkedIn password database compromised Michael Hallgren (Jun 07)
    - Re: LinkedIn password database compromised Randy Bush (Jun 07)
    - Re: LinkedIn password database compromised Rich Kulawiec (Jun 08)

(Thread continues...)