IRC Log for #openid on 2008-01-18

Timestamps are in UTC.

  1. [00:32:37] * shigeta (n=shigeta@124.32.114.226) has joined #openid
  2. [01:33:47] * PibbRelay (n=supybot@nat/janrain/x-ef1d4c33a4ba0646) Quit (Read error: 104 (Connection reset by peer))
  3. [01:36:09] * PibbRelay (n=supybot@nat/janrain/x-5975c63c720d6a9b) has joined #openid
  4. [01:37:01] * stub (n=stub@ppp-58-8-13-32.revip2.asianet.co.th) has joined #openid
  5. [02:15:31] * Mjrn (n=root@32.135.219.88) has joined #openid
  6. [02:17:39] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) has joined #openid
  7. [02:22:25] * Mjrn (n=root@32.135.219.88) Quit ()
  8. [02:34:01] * markhnz (n=markh@82.152.215.227) has left #openid
  9. [03:34:57] * Roebot (n=Roebot@ip68-101-200-165.sd.sd.cox.net) has joined #openid
  10. [03:42:01] * _keturn (n=acapnoti@pdpc/supporter/sustaining/keturn) Quit (Read error: 110 (Connection timed out))
  11. [03:43:01] * jrbot (n=supybot@c-71-236-228-127.hsd1.or.comcast.net) Quit (Read error: 110 (Connection timed out))
  12. [03:54:27] * peace-keeper (n=peace-ke@c-24-91-177-185.hsd1.ma.comcast.net) Quit (Read error: 110 (Connection timed out))
  13. [03:58:25] * evanpro (n=evanpro@pdpc/supporter/silver/evanpro) Quit (Read error: 110 (Connection timed out))
  14. [04:09:11] <miyagawa> Bradに Net::OpenIDの 2.0 対応やってと頼まれている件
  15. [04:09:46] <miyagawa> eek. wrong channel, sorry :p
  16. [04:36:11] <PibbRelay> <Atom Dude> armin390 - Yahoo OpenID will be ready for beta testing on Jan 30th
  17. [04:39:55] * stub (n=stub@canonical/launchpad/stub) Quit (Read error: 113 (No route to host))
  18. [05:11:27] * Luke (n=luke@74-132-218-248.dhcp.insightbb.com) has left #openid
  19. [05:29:11] <yonkeltron> i did read that...
  20. [06:06:43] * _keturn (n=acapnoti@pdpc/supporter/sustaining/keturn) has joined #openid
  21. [06:09:13] * jrbot (n=supybot@c-71-236-228-127.hsd1.or.comcast.net) has joined #openid
  22. [06:19:12] * worried (n=worried@unaffiliated/worried) has joined #openid
  23. [06:22:42] * Roebot (n=Roebot@ip68-101-200-165.sd.sd.cox.net) Quit (Read error: 110 (Connection timed out))
  24. [06:58:01] * lopnor_ (n=lopnor@nat.soffritto.org) Quit (Read error: 104 (Connection reset by peer))
  25. [07:04:07] * stub (n=stub@ppp-58-8-13-32.revip2.asianet.co.th) has joined #openid
  26. [07:15:02] * lopnor_ (n=lopnor@nat.soffritto.org) has joined #openid
  27. [07:19:26] * polyonymous (n=hacker@pD953826F.dip0.t-ipconnect.de) Quit (Read error: 110 (Connection timed out))
  28. [07:21:29] * polyonymous_note (n=hacker@pD953B6B8.dip0.t-ipconnect.de) has joined #openid
  29. [07:23:03] * polyonymous-note (n=hacker@pD953826F.dip0.t-ipconnect.de) Quit (Read error: 101 (Network is unreachable))
  30. [07:23:13] * polyonymous (n=hacker@pD953B6B8.dip0.t-ipconnect.de) has joined #openid
  31. [07:38:09] * w0rried (n=worried@unaffiliated/worried) has joined #openid
  32. [07:38:38] <w0rried> so yahoo is implementing openid jan 30
  33. [07:38:50] * worried (n=worried@unaffiliated/worried) Quit (Nick collision from services.)
  34. [07:38:56] * w0rried is now known as worried
  35. [07:51:56] * raboof (i=arnouten@vhe-520116.sshn.net) has joined #openid
  36. [07:52:05] <raboof> anyone with write access to the website here?
  37. [07:52:38] <worried> who can give me a link to the yahoo test site
  38. [07:52:47] <raboof> http://openid.net/developers/specs/ links to http://openid.net/specs/openid-attribute-exchange-1_0-1_0.txt - that should be http://openid.net/specs/openid-attribute-exchange-1_0.txt
  39. [07:53:59] <Makenshi> http://openid.yahoo.com/
  40. [07:54:22] <raboof> congrats on the adoption of openid by yahoo btw, even if it's only as a relied party
  41. [07:54:23] <Makenshi> I bet it will be one way.. you can use your yahoo account as an openid, but can't associate an existing openid with your account
  42. [07:54:26] <worried> thats just yahoo propaganda not actual access to any testing
  43. [07:54:53] <Makenshi> You cannot accesss it yet
  44. [07:55:01] <worried> the media appear to have been given invites to test it out
  45. [07:55:17] <tjohns> raboof: Where are you seeing that link?
  46. [07:56:05] <tjohns> Oh, nevermind, found it
  47. [07:57:06] <worried> can i ask a question pls about the website? i went to the security mailing list but its not been used for a while, is this through lack of interest or is the list broke?
  48. [07:57:57] <tjohns> I have write access, but I'll need to ping kveton first to make sure it's okay.
  49. [07:58:02] <worried> http://openid.net/mailman/listinfo/security
  50. [07:59:24] <tjohns> worried: Net security list has always been low-traffic.
  51. [07:59:34] <tjohns> Err, The security list*
  52. [07:59:42] <worried> i think it will wake up soon
  53. [08:00:26] <worried> because of the media coverage today
  54. [08:00:55] <worried> the yahoo partnership will get people talking about security more
  55. [08:02:01] <tjohns> There was already a yahoo/security comment, but it got posted to the general list. :)
  56. [08:02:15] <worried> link me if you can
  57. [08:02:44] <worried> i was worried about security getting mentioned in the general list
  58. [08:03:09] <worried> things could get overlooked because ppl aren't posting int he right places
  59. [08:03:12] <tjohns> http://openid.net/pipermail/general/2008-January/003943.html
  60. [08:03:42] <worried> i've seen that one its the latest post
  61. [08:04:17] <tjohns> There's a couple newer posts. It's just the latest thread to be created.
  62. [08:04:34] <worried> i don't see what that post has to do with security though
  63. [08:05:26] <tjohns> Well, it's tangentially related, since Yahoo isn't allowing OpenID 1.1 due to security concerns
  64. [08:05:41] <worried> it just mentions yahoo are using the latest version which makes sense for yahoo or any org of yahoo's user base
  65. [08:07:57] <raboof> tjohns: the current link is dead...
  66. [08:08:37] <worried> interesting http://suggestions.yahoo.com/detail/?prop=ydn&fid=7555
  67. [08:11:04] <tjohns> raboof: Which link? The attribute exchange one? I'm working on it.
  68. [08:13:09] * worried (n=worried@unaffiliated/worried) Quit ("good day")
  69. [08:18:01] <tjohns> worried: Ya, I agree that it makes sense for Yahoo to focus on the current spec, but the way they wrote their error message implies that there's something fundamentally insecure about 1.1 over 2.0, which isn't true as far as I know.
  70. [08:54:49] * potato (i=potato@dsl-242-19-98.telkomadsl.co.za) has joined #openid
  71. [08:55:06] * potato (i=potato@dsl-242-19-98.telkomadsl.co.za) Quit (Client Quit)
  72. [08:55:18] * potato (i=potato@dsl-242-19-98.telkomadsl.co.za) has joined #openid
  73. [08:56:57] * potato (i=potato@dsl-242-19-98.telkomadsl.co.za) Quit (Client Quit)
  74. [08:58:19] * potato (i=potato@dsl-242-19-98.telkomadsl.co.za) has joined #openid
  75. [10:15:29] * hillsy (i=shaunh@npfit2.dh.bytemark.co.uk) has joined #openid
  76. [10:35:33] * polyonymous_note (n=hacker@pD953B6B8.dip0.t-ipconnect.de) Quit (Read error: 113 (No route to host))
  77. [11:09:07] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) Quit ()
  78. [11:13:40] * SvenDowideit__ (n=SvenDowi@124-171-60-66.dyn.iinet.net.au) has joined #openid
  79. [11:20:51] * rebel_leader (n=Horst@dtmd-590fec1a.pool.einsundeins.de) has joined #openid
  80. [11:31:34] * SvenDowideit_ (n=SvenDowi@twiki/developer/SvenDowideit) Quit (Read error: 101 (Network is unreachable))
  81. [11:40:27] * amir (n=Miranda@gentoo/developer/amir) Quit (Remote closed the connection)
  82. [11:55:00] * rebel_leader (n=Horst@dtmd-590fec1a.pool.einsundeins.de) Quit ("Verlassend")
  83. [12:06:35] * l0gic (n=l0gic@84.91.8.144) Quit (Read error: 104 (Connection reset by peer))
  84. [12:07:31] * l0gic (n=l0gic@84.91.8.144) has joined #openid
  85. [12:10:20] * amir (n=Miranda@gentoo/developer/amir) has joined #openid
  86. [12:25:21] * amir (n=Miranda@gentoo/developer/amir) Quit (Remote closed the connection)
  87. [12:29:39] * rebel_leader (n=Horst@dtmd-590fec1a.pool.einsundeins.de) has joined #openid
  88. [12:30:49] * amir (n=Miranda@gentoo/developer/amir) has joined #openid
  89. [12:50:15] * SvenDowideit_ (n=SvenDowi@twiki/developer/SvenDowideit) has joined #openid
  90. [13:03:39] * shigeta (n=shigeta@124.32.114.226) Quit ("Leaving...")
  91. [13:05:10] * rebel_leader (n=Horst@dtmd-590fec1a.pool.einsundeins.de) Quit (Client Quit)
  92. [13:07:55] * SvenDowideit__ (n=SvenDowi@124-171-60-66.dyn.iinet.net.au) Quit (Read error: 101 (Network is unreachable))
  93. [13:18:32] * SvenDowideit__ (n=SvenDowi@124-171-1-65.dyn.iinet.net.au) has joined #openid
  94. [13:19:02] * bottiger (n=arvid@psi0.nbi.dk) has joined #openid
  95. [13:33:57] * SvenDowideit_ (n=SvenDowi@twiki/developer/SvenDowideit) Quit (Read error: 101 (Network is unreachable))
  96. [13:36:25] * priidu_ (n=aa@58.246.249.49) has joined #openid
  97. [13:43:18] * polyonymous_note (n=hacker@pD953B6B8.dip0.t-ipconnect.de) has joined #openid
  98. [13:44:57] * MrTopf (n=cs@62.47.104.114) has joined #openid
  99. [13:50:38] * MrTopf is now known as MrTopf|snowsprin
  100. [13:56:31] * stub (n=stub@canonical/launchpad/stub) Quit ("Leaving.")
  101. [14:30:06] * benj3one (n=ben@75.41.185.190) Quit (Read error: 110 (Connection timed out))
  102. [14:46:54] * Mjrn (n=root@32.163.151.59) has joined #openid
  103. [14:48:23] * benj3one (n=ben@adsl-75-41-185-190.dsl.spfdmo.sbcglobal.net) has joined #openid
  104. [14:52:27] * potato (i=potato@dsl-242-19-98.telkomadsl.co.za) Quit (Read error: 110 (Connection timed out))
  105. [14:52:47] * Mjrn (n=root@32.163.151.59) has left #openid
  106. [14:54:32] * potato (i=potato@dsl-242-61-189.telkomadsl.co.za) has joined #openid
  107. [15:15:49] * peace-keeper (n=peace-ke@static-68-162-255-8.bos.east.verizon.net) has joined #openid
  108. [15:40:41] * Roebot (n=Roebot@wsip-68-15-8-102.sd.sd.cox.net) has joined #openid
  109. [16:04:28] * Roebot (n=Roebot@wsip-68-15-8-102.sd.sd.cox.net) Quit ("ChatZilla 0.9.80 [Firefox 2.0.0.11/2007112718]")
  110. [16:13:56] * polyonymous_note (n=hacker@pD953B6B8.dip0.t-ipconnect.de) Quit (Read error: 113 (No route to host))
  111. [18:01:55] * peace-keeper (n=peace-ke@static-68-162-255-8.bos.east.verizon.net) Quit (Connection reset by peer)
  112. [18:08:27] * Prometheus^ (n=Promethe@cs181170022.pp.htv.fi) has joined #openid
  113. [18:12:25] * hillsy (i=shaunh@npfit2.dh.bytemark.co.uk) Quit (Remote closed the connection)
  114. [18:12:39] * Prometheus^ (n=Promethe@cs181170022.pp.htv.fi) Quit (Client Quit)
  115. [18:15:06] * SamRose (n=chatzill@adsl-76-251-219-21.dsl.lgtpmi.sbcglobal.net) has joined #openid
  116. [18:29:09] * idnar (i=mithrand@unaffiliated/idnar) Quit (Nick collision from services.)
  117. [18:29:12] * idnar_ (i=mithrand@unaffiliated/idnar) has joined #openid
  118. [18:31:02] * idnar_ is now known as idnar
  119. [18:50:43] * peace-keeper (n=peace-ke@static-68-162-255-8.bos.east.verizon.net) has joined #openid
  120. [18:54:06] * idnar (i=mithrand@unaffiliated/idnar) Quit (Read error: 110 (Connection timed out))
  121. [19:08:27] * idnar (i=mithrand@unaffiliated/idnar) has joined #openid
  122. [19:13:24] * pvandewyngaerde (n=pvandewy@110.79-241-81.adsl-dyn.isp.belgacom.be) has joined #openid
  123. [19:14:38] * priidu_ (n=aa@58.246.249.49) Quit (Read error: 110 (Connection timed out))
  124. [19:31:49] * evanpro (n=evanpro@pdpc/supporter/silver/evanpro) has joined #openid
  125. [19:31:49] <jibot> evanpro is Evan Prodromou, info at http://wikitravel.org/en/User:Evan
  126. [20:02:36] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) has joined #openid
  127. [20:17:29] * SamRose_ (n=chatzill@adsl-76-251-219-21.dsl.lgtpmi.sbcglobal.net) has joined #openid
  128. [20:21:18] <tjohns> raboof: The broken link on OpenID.net should be fixed now.
  129. [20:25:40] * SamRose (n=chatzill@adsl-76-251-219-21.dsl.lgtpmi.sbcglobal.net) Quit (Success)
  130. [20:42:23] <raboof> tjohns: cool, looking good!
  131. [20:44:28] * evanpro (n=evanpro@pdpc/supporter/silver/evanpro) Quit (Read error: 110 (Connection timed out))
  132. [20:50:01] <_keturn> tjohns: so, regarding OpenID 2.0 and security. There are a few features in OpenID 2.0 that those of us using OpenID 1.x thought of as "nice to have", but others considered a "must have." So it's not terribly surprising to see, now that OpenID 2.0 is out, some players only supporting 2.0.
  133. [20:52:13] <_keturn> One of those features that's security-related is the ability for a provider to verify a RP's return_to URL, which guards against a class of spoofing attacks that exploit open redirect scripts.
  134. [20:52:59] <_keturn> looking for it in the spec, it's pretty understated. Section 13, #rp_discovery, "Relying Parties SHOULD use the Yadis protocol to publish their valid return_to URLs. The relying party MAY publish this information at any URL, and SHOULD publish it under the realm so that providers can verify return_to URLs."
  135. [20:55:16] <_keturn> Yahoo also recycles identifiers. (So does LJ, but LJ apparently deciced to ignore the issue that creates when your identifiers are used for third party authorization.) The 1.x spec doesn't have any provision for this, the 2.0 spec does.
  136. [20:56:48] <tjohns> Ah, both good points.
  137. [20:57:10] <tjohns> Thanks
  138. [21:02:22] * amir (n=Miranda@gentoo/developer/amir) Quit (Remote closed the connection)
  139. [21:22:17] * polyonymous_note (n=hacker@pD953B6B8.dip0.t-ipconnect.de) has joined #openid
  140. [21:23:29] <tjohns> You know, both RP verification and identifier recycling are missing from the OpenIDChanges document on the wiki. I wonder what else is missing.
  141. [21:33:42] <_keturn> those are the two things in the "draft 12" section of http://xrl.us/beh4d (which appears to be where OpenIDChanges came from). It looks like there are another few things in there, probably from drafts 10-11.
  142. [21:36:26] <tjohns> Ah, that explains it.
  143. [21:36:43] <Makenshi> LJ treats OpenID users as second-class :/
  144. [21:37:10] <Makenshi> Also, www.own-id.com is down and is causing me some trouble :)
  145. [21:39:24] * Roebot (n=Roebot@wsip-68-15-8-102.sd.sd.cox.net) has joined #openid
  146. [21:49:18] <kyevan> Makenshi: Well... they kinda are :P
  147. [21:49:40] <kyevan> Many of the features make sense to not give to openid users - journals themselves, mainly!
  148. [21:50:57] <Makenshi> kyevan: but the purpose of OpenID is mainly for authentication, they should be given the same accounts as any other user, and their openid should be associated with the account
  149. [21:51:10] <Makenshi> You cannot even associate alternate openids with an account on lj
  150. [21:52:38] <kyevan> I mostly only use my lj account to log on to various OpenID things anyway >_>
  151. [21:52:49] <kyevan> I never was good about keeping a blog :P
  152. [21:53:25] <Makenshi> I did have a full account on lj, and i was hoping to ressurect it, but support wouldn't let me transfer my openid account to it :(
  153. [21:53:46] <Makenshi> which is a pain, because if i do go and get another account, all those people who friended me will have to do it again (for the third time)
  154. [21:54:19] <kyevan> Mmm.
  155. [21:54:34] <kyevan> Well, as annoying as this is, you can always write a patch >_>
  156. [21:56:10] <Makenshi> The problem with openid taking off is that all the big sites will implement it as providers only because they all want /their/ accounts to be your primary one
  157. [21:59:59] <kyevan> And then we beat them with a stick.
  158. [22:00:25] <kyevan> Does anyone have a stick, by the way? I need to go 'talk' to wordpress
  159. [22:05:39] * amir (n=Miranda@gentoo/developer/amir) has joined #openid
  160. [22:07:33] * SamRose_ (n=chatzill@adsl-76-251-219-21.dsl.lgtpmi.sbcglobal.net) Quit ("ChatZilla 0.9.80 [Firefox 2.0.0.11/2007112718]")
  161. [22:08:17] <PibbRelay> <mpg4> reCAPTCHA on utest! coming to a myopenid.com near you soon!
  162. [22:08:38] <PibbRelay> <mpg4> oops....ignore that...wrong channel...
  163. [22:08:39] <PibbRelay> <mpg4> ** mpg4 hides
  164. [22:09:17] <kyevan> >_>
  165. [22:09:27] <kyevan> mpg4: Do you have a stick I can borrow?
  166. [22:10:00] <kyevan> Also, I really need to talk dylan into giveing me kyevan.sinedev.org, I'm getting sick of logging in as sinedev.org/~kyevan/ ;)
  167. [22:10:11] <PibbRelay> <mpg4> ------------>
  168. [22:10:23] <PibbRelay> <mpg4> careful, it's pointy on the end
  169. [22:10:41] <kyevan> Hmm, I have to be careful not to kill them.
  170. [22:10:52] <kyevan> Dead coders don't do a very good job patching things.
  171. [22:11:09] <kyevan> Dead execs are usually just about as useful as live ones, though!
  172. [22:11:20] * kyevan 's being silly, don't hurt him >_>
  173. [22:12:20] <Makenshi> They don't moan as much when you drive over them, though!
  174. [22:12:45] <kyevan> Yeh, but they cost less.
  175. [22:12:53] <kyevan> All you need to pay them is a brain or two a day.
  176. [22:32:07] * pvandewyngaerde (n=pvandewy@110.79-241-81.adsl-dyn.isp.belgacom.be) Quit (Remote closed the connection)
  177. [23:08:17] * tjohns (n=tjohns@cpe-76-170-58-80.socal.res.rr.com) Quit ()
  178. [23:54:53] * MrTopf|snowsprin (n=cs@62.47.104.114) Quit ()

These logs were automatically created by OpenIDlogbot on chat.freenode.net using a modified version of the Java IRC LogBot.