[Python-Dev] Offtopic: OpenID Providers (original) (raw)
Jesus Cea jcea at jcea.es
Mon Sep 9 17:11:21 CEST 2013
- Previous message: [Python-Dev] Offtopic: OpenID Providers
- Next message: [Python-Dev] Offtopic: paranoia
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On 06/09/13 21:34, R. David Murray wrote:
Note that I said that single signon itself was overrated. If you use the same token to authenticate to multiple sites (and here the 'token' is the email address) then your identities on those sites are ipso facto associated with each other. If that email address is also never leaked (never displayed, even to other signed on users, all communication with the site encrypted), then you only have to worry if the sites exchange information about their accounts, or if the government comes knocking on their doors....
Yes, I'm paranoid. That doesn't mean they aren't listening.
Being paranoid is good. Fix for this is actually trivial: Use different emails for different "personalities".
If you are doing things you really NEED to hide, virtual machines and TOR is the way to go.
Jesús Cea Avión // /// /// jcea at jcea.es - http://www.jcea.es/ // // // // // Twitter: @jcea // // ///// jabber / xmpp:jcea at jabber.org // // // // // "Things are not so easy" // // // // // // "My name is Dump, Core Dump" /// //_/ // // "El amor es poner tu felicidad en la felicidad de otro" - Leibniz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iQCVAwUBUi3lGZlgi5GaxT1NAQLykAQAi8WDuWmEAAX7bP1glDT8iLrMRpKlu+Vh WndX9ObB/os2D9RZkL7DZB01EDMRvfjGlWFm3gQV0CbM9smkgGkhJNLuxYzA2fpK PQlbO4KUKCoQG7qm413TA1g0xxOGzG2n9g2kJisFBCNu2Y2PXroUhm6p41CbTd89 ovwZLLUcPZU= =EQu4 -----END PGP SIGNATURE-----
- Previous message: [Python-Dev] Offtopic: OpenID Providers
- Next message: [Python-Dev] Offtopic: paranoia
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]