IRC Log for #openid on 2007-04-16

Timestamps are in UTC.

  1. [00:37:20] * bricas (n=bricas@CPE0011506c8049-CM0013711405ec.cpe.net.cable.rogers.com) Quit ("ChatZilla 0.9.78.1 [Firefox 2.0.0.3/2007040314]")
  2. [00:44:07] * shigeta (n=shigeta@124.32.114.226) has joined #openid
  3. [00:50:17] * fajro (n=fajro@OL104-24.fibertel.com.ar) Quit (Read error: 110 (Connection timed out))
  4. [00:50:48] * fajro (n=fajro@OL104-24.fibertel.com.ar) has joined #openid
  5. [01:00:59] * Brylie (n=brylie@CPE-75-81-108-73.kc.res.rr.com) has joined #openid
  6. [01:14:24] * fajro_ (n=fajro@OL104-24.fibertel.com.ar) has joined #openid
  7. [01:14:58] * fajro (n=fajro@OL104-24.fibertel.com.ar) Quit (Read error: 110 (Connection timed out))
  8. [01:28:00] * GabeW chuckles about the comment that "this channel gets little/no use"
  9. [01:28:07] <GabeW> I guess its all a matter of perspective
  10. [01:28:14] * GabeW thinks it gets quite a bit
  11. [01:28:21] <GabeW> high signal to noise ratio
  12. [01:29:28] <philip> yeah, i commented after only looking at the last two days... then starting threeish days ago that all changed
  13. [01:32:36] <GabeW> well, its the weekend
  14. [01:32:55] <GabeW> at the end of a holiday week here in the states
  15. [01:33:34] <philip> that makes sense
  16. [01:33:53] <GabeW> its not a super busy channel
  17. [01:35:50] * cote_ (n=cote@adsl-71-145-166-68.dsl.austtx.sbcglobal.net) Quit ()
  18. [01:48:45] <philip> quality not quantity :)
  19. [01:49:07] <philip> i'm just starting out on my OpenID adventures but plan to go a long way
  20. [01:49:15] * tbbrown (n=tbbrown@cpe-66-68-127-247.austin.res.rr.com) has joined #openid
  21. [01:50:06] <philip> i work on the php.net project so plan to use it for some of our operations, like the user notes, or at least am exploring the idea
  22. [01:50:12] <SRogers> ditto - I'm just digging into the Restful Open ID Authentication plugin
  23. [01:51:44] <philip> that's a ruby openid api?
  24. [01:52:03] <SRogers> http://identity.eastmedia.com/identity/show/Restful+OpenID+Authentication
  25. [01:52:54] * fajro_ (n=fajro@OL104-24.fibertel.com.ar) Quit (Read error: 110 (Connection timed out))
  26. [01:53:17] <philip> the thought of allowing users to easily login without worrying about a million separate usernames/passwords is really quite exciting
  27. [01:55:18] <philip> i'm still worried about spam however, and the ability for spammers to create open ids so am researching this topic
  28. [01:56:05] <GabeW> the janrain guys have botbouncer
  29. [01:56:14] <GabeW> but another way of looking at that is that it prevents machines from having openids
  30. [01:57:36] <philip> will we ever find something better then CAPTCHA for finding humans?
  31. [01:58:01] <gregh_> spammers will certainly end up having openids, you just have to make sure you don't attribute any extra privileges on a user just due to the existence of an openid
  32. [01:59:01] <gregh_> just like an email spammer having valid spf records doesn't make them any less of a spammer
  33. [02:00:55] <philip> in this particular example, it's for allowing users to add comments to manual (documentation) entries... so rather then using it for limiting spam abuse, we'll instead focus on using the ids for tracking so they can for example see all their contributions? or so we can delete all notes by user id xxxxx? hmm
  34. [02:02:32] <gregh_> keep in mind that there are already services out there that allow anybody to use any openid name that is under the service domain, with no authentication or any other restrictions
  35. [02:02:38] <philip> this botbouncer is interesting but i'm unsure how it's different from a developer having their own captcha checks on teh site
  36. [02:02:38] * fajro_ (n=fajro@OL104-24.fibertel.com.ar) has joined #openid
  37. [02:02:43] * fajro_ (n=fajro@OL104-24.fibertel.com.ar) Quit (Read error: 104 (Connection reset by peer))
  38. [02:03:05] <GabeW> its not, except the user doesn't have to do captcha at every freaking site
  39. [02:03:09] <GabeW> only once per openid
  40. [02:03:16] <philip> ah
  41. [02:03:19] <gregh_> eg. http://www.jkg.in/openid/
  42. [02:03:47] <GabeW> sometimes I'd rather just poke myself and bleed into my keyboard rather than do another captcha
  43. [02:03:54] <GabeW> (for the dna scan, that is)
  44. [02:06:27] * tbbrown_ (n=tbbrown@cpe-66-68-127-247.austin.res.rr.com) Quit (Read error: 110 (Connection timed out))
  45. [02:06:46] <philip> this botbouncer however isn't a bad idea
  46. [02:07:26] <philip> i too wish we, as a world, would come up with something aside from captcha but we haven't
  47. [02:09:09] <philip> so if botbouncer.com is down, revert to your own [captcha] mechanism (as backup), so you'll then at least know person X answered at least one captcha in their life
  48. [02:09:50] <philip> any other common mechanisms?
  49. [02:10:38] <philip> i'm exploring jyte but it looks too... complicated and time consuming for most
  50. [02:10:47] <GabeW> complicated? hehe
  51. [02:10:52] <GabeW> there's not much to it
  52. [02:11:19] <philip> if i give my mom an openid and tell her to use it... she needs to come up with some "cred questions"?
  53. [02:12:14] <philip> i can see how it could be used something like a "gpg ring party" however with claims like "I am human" with friends approving said claim
  54. [02:13:56] <GabeW> i don't think cred is all that clear
  55. [02:13:58] <GabeW> or useful
  56. [02:14:02] <GabeW> but I don't know
  57. [02:20:50] * tbbrown (n=tbbrown@cpe-66-68-127-247.austin.res.rr.com) Quit (Read error: 110 (Connection timed out))
  58. [02:25:17] * factoryjoe (n=factoryj@dsl081-245-070.sfo1.dsl.speakeasy.net) has joined #openid
  59. [02:29:13] * stratus (n=stratus@201.53.55.52) has joined #openid
  60. [02:30:57] * stub (n=stub@ppp-58.8.11.197.revip2.asianet.co.th) has joined #openid
  61. [02:44:23] * factoryjoe (n=factoryj@dsl081-245-070.sfo1.dsl.speakeasy.net) Quit ()
  62. [02:54:20] * tbbrown (n=tbbrown@cpe-66-68-127-247.austin.res.rr.com) has joined #openid
  63. [03:14:50] <philip> me either, but it looks like something worthy of looking into
  64. [03:27:52] * keturn peeks in
  65. [03:49:04] * fajro (n=fajro@OL104-24.fibertel.com.ar) has joined #openid
  66. [03:57:58] * tessier (n=treed@kernel-panic/sex-machines) has joined #openid
  67. [04:48:52] * Brylie (n=brylie@CPE-75-81-108-73.kc.res.rr.com) Quit ("Bye.")
  68. [05:05:35] * shigeta_ (n=shigeta@124.32.114.226) has joined #openid
  69. [05:17:49] * cote (n=cote@adsl-71-145-166-68.dsl.austtx.sbcglobal.net) has joined #openid
  70. [05:24:17] * shigeta (n=shigeta@124.32.114.226) Quit (Read error: 110 (Connection timed out))
  71. [05:50:14] * keturn (n=kevint@pdpc/supporter/sustaining/keturn) Quit ("Client exiting")
  72. [06:09:10] * keturn (n=kevint@pdpc/supporter/sustaining/keturn) has joined #openid
  73. [06:09:10] <jibot> keturn is Kevin Turner
  74. [07:27:05] * SRogers (n=chatzill@cpe-72-179-20-29.austin.res.rr.com) Quit (Read error: 110 (Connection timed out))
  75. [07:38:19] * elliottcable is now known as [e]zZz
  76. [07:40:11] * fajro is now known as fajrozzz
  77. [07:52:14] * david`bgk (n=david@ubuntu/member/david-bgk) has joined #openid
  78. [07:56:26] * david`bgk (n=david@ubuntu/member/david-bgk) has left #openid
  79. [10:34:40] * stu1 (n=stub@ppp-58.8.12.154.revip2.asianet.co.th) has joined #openid
  80. [10:54:44] * stub (n=stub@canonical/launchpad/stub) Quit (Read error: 110 (Connection timed out))
  81. [11:01:16] * bricas (n=bricas@h64-5-219-130.gtcust.grouptelecom.net) has joined #openid
  82. [11:02:10] * stu1 (n=stub@canonical/launchpad/stub) Quit (Read error: 113 (No route to host))
  83. [11:16:16] * bricas (n=bricas@h64-5-219-130.gtcust.grouptelecom.net) Quit (Remote closed the connection)
  84. [11:25:47] * bricas (n=bricas@h64-5-219-130.gtcust.grouptelecom.net) has joined #openid
  85. [12:30:56] * Prometheus^ (n=Promethe@kone1.tmvvision.finnetcom.net) has joined #openid
  86. [12:41:15] * Prometheus^ (n=Promethe@kone1.tmvvision.finnetcom.net) Quit ()
  87. [12:41:21] * Prometheus^ (n=Promethe@kone1.tmvvision.finnetcom.net) has joined #openid
  88. [12:57:16] * shigeta_ (n=shigeta@124.32.114.226) Quit ("Leaving...")
  89. [13:08:48] * SRogers (n=chatzill@cpe-72-179-20-29.austin.res.rr.com) has joined #openid
  90. [13:20:41] * stub (n=stub@ppp-58.8.12.154.revip2.asianet.co.th) has joined #openid
  91. [13:22:10] * Prometheus^ (n=Promethe@kone1.tmvvision.finnetcom.net) Quit ()
  92. [13:25:15] * Prometheus^ (n=Promethe@kone1.tmvvision.finnetcom.net) has joined #openid
  93. [13:41:43] * dcorbin (n=dcorbin@adsl-068-209-008-148.sip.asm.bellsouth.net) Quit ("Leaving")
  94. [13:58:51] * trel1023 (n=trel1023@cpe-066-057-014-057.nc.res.rr.com) Quit (Read error: 60 (Operation timed out))
  95. [14:30:21] * Prometheus^ (n=Promethe@kone1.tmvvision.finnetcom.net) Quit ()
  96. [15:28:35] * KevinMarks (n=Snak@pdpc/supporter/active/kevinmarks) Quit ("off to work")
  97. [15:32:17] * PatF (n=Patrick@c-24-10-171-142.hsd1.ut.comcast.net) has joined #openid
  98. [16:36:40] * mmealling (n=michael@c-69-180-6-105.hsd1.ga.comcast.net) Quit (Read error: 110 (Connection timed out))
  99. [16:37:41] * [e]zZz is now known as elliottcable
  100. [16:46:03] * SamRose (n=chatzill@c-71-206-125-50.hsd1.mi.comcast.net) has joined #openid
  101. [16:59:03] * stub (n=stub@canonical/launchpad/stub) Quit (No route to host)
  102. [17:04:31] * j3h (n=j3h@c-71-236-228-127.hsd1.or.comcast.net) has joined #openid
  103. [17:07:27] * cygnus (n=cygnus@www.cprogrammer.org) has joined #openid
  104. [17:07:28] <jibot> cygnus is WorkerBee(name="Jonathan Daugherty", company="JanRain, Inc.")
  105. [17:37:35] * KevinMarks (i=KevinMar@nat/google/x-a5628e67487b1cca) has joined #openid
  106. [18:36:50] * cygnus (n=cygnus@www.cprogrammer.org) has left #openid
  107. [18:51:41] * sven__ (n=sven@146.88.77.83.cust.bluewin.ch) Quit (Read error: 60 (Operation timed out))
  108. [19:00:07] * sven__ (n=sven@68.108.77.83.cust.bluewin.ch) has joined #openid
  109. [19:32:08] * daleolds (i=daleolds@nat/novell/x-073db1781fb94922) has joined #openid
  110. [19:36:16] * SamRose (n=chatzill@c-71-206-125-50.hsd1.mi.comcast.net) Quit (Remote closed the connection)
  111. [20:00:50] * tbbrown (n=tbbrown@cpe-66-68-127-247.austin.res.rr.com) Quit (Read error: 110 (Connection timed out))
  112. [20:03:08] * tbbrown (n=tbbrown@rrcs-24-173-213-254.sw.biz.rr.com) has joined #openid
  113. [20:05:37] * aconbere (n=aconbere@mail.geonerco.com) has joined #openid
  114. [20:23:29] * bricas (n=bricas@h64-5-219-130.gtcust.grouptelecom.net) Quit ("ChatZilla 0.9.78.1 [Firefox 2.0.0.3/2007040314]")
  115. [20:28:43] * tbbrown (n=tbbrown@rrcs-24-173-213-254.sw.biz.rr.com) Quit (Read error: 110 (Connection timed out))
  116. [20:33:16] * Prometheus^ (n=Promethe@cs181170022.pp.htv.fi) has joined #openid
  117. [20:50:35] * rgl (n=Rui@84.90.10.107) has joined #openid
  118. [20:50:37] <rgl> hello
  119. [20:52:19] <rgl> the simple registration extension mentions that the country field is a iso 3166 country code, but is it a two letter, or three letter code?
  120. [20:52:39] <rgl> or can it be both?
  121. [20:58:10] * tbbrown (n=tbbrown@rrcs-24-173-213-254.sw.biz.rr.com) has joined #openid
  122. [20:58:13] <keturn> alpha-2 is what most everyone else uses, so I'd stick to that
  123. [21:00:45] <rgl> alright, thx keturn :D
  124. [21:04:35] * daleolds (i=daleolds@nat/novell/x-073db1781fb94922) has left #openid
  125. [21:22:48] * tbbrown (n=tbbrown@rrcs-24-173-213-254.sw.biz.rr.com) Quit (Read error: 110 (Connection timed out))
  126. [21:32:20] * Prometheus^ (n=Promethe@cs181170022.pp.htv.fi) Quit ()
  127. [21:32:51] * sven__ (n=sven@68.108.77.83.cust.bluewin.ch) Quit (Read error: 104 (Connection reset by peer))
  128. [21:35:08] * elliottcable (n=elliottc@98-88-178-69.gci.net) Quit (Read error: 60 (Operation timed out))
  129. [21:37:06] * Prometheus^ (n=Promethe@cs181170022.pp.htv.fi) has joined #openid
  130. [21:37:14] * Prometheus^ (n=Promethe@cs181170022.pp.htv.fi) Quit (Remote closed the connection)
  131. [21:49:20] * sven__ (n=sven@68.108.77.83.cust.bluewin.ch) has joined #openid
  132. [21:51:08] * stratus (n=stratus@201.53.55.52) Quit (Read error: 104 (Connection reset by peer))
  133. [21:51:43] * stratus (n=stratus@201.53.55.52) has joined #openid
  134. [21:52:39] * tbbrown (n=tbbrown@rrcs-24-153-196-185.sw.biz.rr.com) has joined #openid
  135. [22:00:06] * bricas (n=bricas@CPE0011506c8049-CM0013711405ec.cpe.net.cable.rogers.com) has joined #openid
  136. [22:05:00] * tbbrown_ (n=tbbrown@rrcs-24-153-196-185.sw.biz.rr.com) has joined #openid
  137. [22:08:14] * tbbrown_ (n=tbbrown@rrcs-24-153-196-185.sw.biz.rr.com) Quit (Client Quit)
  138. [22:13:58] <rgl> the URL http://sub.a.site.example/ matches the realm http://*.site.example/ ?
  139. [22:18:15] * tbbrown (n=tbbrown@rrcs-24-153-196-185.sw.biz.rr.com) Quit (Read error: 113 (No route to host))
  140. [22:25:04] * daleolds (n=daleolds@137.65.132.66) has joined #openid
  141. [22:25:43] * tbbrown (n=tbbrown@rrcs-24-153-196-185.sw.biz.rr.com) has joined #openid
  142. [22:29:45] * trepcas (n=seba@clj16-36.dial-up.arnes.si) has joined #openid
  143. [22:29:51] <trepcas> hi
  144. [22:30:05] <trepcas> anybody here ?
  145. [22:30:46] <GabeW> lots
  146. [22:31:09] <trepcas> great
  147. [22:31:27] <trepcas> i have a question ... its probably pretty silly but i don't seem to get it
  148. [22:33:17] <trepcas> when a consumer sends a person to openid server ... and he authenticates there and he sends him back ...why do you need that secret ... i mean if you want to be sure that you got the data from the correct server isn't it enough to just check his IP/hostname ?
  149. [22:34:01] <GabeW> how does the RP know that the assertion came from the OP that the RP initially redirected the user to?
  150. [22:34:27] <trepcas> RP ?
  151. [22:34:33] <GabeW> relying party - consumer
  152. [22:34:36] <trepcas> aha
  153. [22:35:32] <trepcas> because he checks the IP/hostname of the client that sended him the data
  154. [22:35:46] <trepcas> i mean ... RP -> OP and then OP ->RP...right ?
  155. [22:36:23] <trepcas> so in this case you would have to spoof the DNS to really fool the RP ?
  156. [22:36:23] <gregh_> using an IP is not strong enough, because multiple users may be using the same IP address
  157. [22:36:40] <gregh_> or, one user might be going through a proxy network that switches IP addresses between requests
  158. [22:37:11] <trepcas> hm..right :)
  159. [22:37:13] <trepcas> thanks
  160. [22:37:25] <chowells79> Has anyone checked to see if openid works over Tor? Not that the use case makes any sense... I'm anonymizing myself to identify myself as the owner of this url! :)
  161. [22:38:00] <rgl> tor?
  162. [22:38:07] <gregh_> http://tor.eff.org
  163. [22:38:18] <chowells79> Onion routing network. Anonymizes traffic.
  164. [22:38:58] <keturn> which parties would be behind Tor?
  165. [22:41:38] <chowells79> I was thinking the user's browser.
  166. [22:41:44] <chowells79> It should work just fine, in that case.
  167. [22:41:52] <chowells79> But it'd be kind of silly.
  168. [22:42:06] <rgl> interesting *G*
  169. [22:42:31] * dcorbin (n=dcorbin@adsl-068-209-008-148.sip.asm.bellsouth.net) has joined #openid
  170. [22:42:33] <rgl> you guys saw my realm question? :D
  171. [22:46:48] <keturn> answer is yes
  172. [22:50:45] <rgl> keturn, the wildcard matches multiple domain components?
  173. [22:50:50] <trepcas> anyone knows where I could get a nice openid diagram explaining the protocol ?
  174. [22:51:40] <rgl> keturn, like, http://sub.a.site.example/, http://x.y.z.sub.a.site.example/, http://a.a.a.a.a.sub.a.site.example/?
  175. [22:53:23] <keturn> openid.net openidenabled.com windley.com leancode.com ...
  176. [22:53:24] <rgl> trepcas, this was a nice presenttion: http://identity20.com/media/ETECH_2006/ (not exactly an diagram)
  177. [22:53:38] <keturn> rgl: yup
  178. [22:55:34] <trepcas> thanks
  179. [22:56:12] <trepcas> http://leancode.com/wp-content/uploads/2007/02/openid_protocol.png
  180. [22:56:42] <rgl> keturn, thx!
  181. [22:57:36] <idnar> chowells79: not necessarily
  182. [22:57:48] <idnar> chowells79: the openid identity you're using may be pseudonymous
  183. [22:58:20] <idnar> chowells79: or you might just want to hide how you're currently connecting to the internet, but not care about hiding who you actually are
  184. [22:59:29] <chowells79> Those are both valid cases idnar. I was being slightly facetious, as I had actually considered the pseudonymous case. Good catch on the other one.
  185. [23:31:58] * trepcas (n=seba@clj16-36.dial-up.arnes.si) Quit ("Miranda IM! Smaller, Faster, Easier. http://miranda-im.org")

These logs were automatically created by OpenIDlogbot on chat.freenode.net using a modified version of the Java IRC LogBot.